SecAppDev 2023 lecture details

Supply chain risks in software development

This session covers supply chain risks in software development, techniques for managing them, and best practices for developers to mitigate risks and ensure secure and reliable software products. Where possible, we use live demos.

Tuesday June 13th, 14:00 - 15:30
Room West Wing
Download handouts

In software development, supply chain risks create vulnerabilities like malicious code injection, compromised components, and unauthorized access. These risks can be curtailed through strategies such as supply chain mapping, vendor assessments, code reviews, and patch management. In this session, we dive into utilizing these techniques to bolster security within the Software Development Life Cycle (SDLC). Further, we illuminate how developers can complement these measures with secure coding, dependency management, threat modeling, security awareness training, and security reviews.

Key takeaway

Learn how to reduce supply chain risk adopting techniques used in the industry today.

Content level


Target audience

Technical product managers, software engineers, product owners


Basic knowledge about the SDLC

Join us for SecAppDev. You will not regret it!

Bruno Bossola
Bruno Bossola

Co-founder and CTO, Meterian Ltd

Expertise: Java Champion, experienced coder, agile coach

More details

Join us for SecAppDev. You will not regret it!

Related lectures

SecAppDev offers the most in-depth content you will find in a conference setting