Decades ago, Tony Turner, CEO of Opswright and author of Software Transparency: Supply Chain Security in an Era of a Software-Driven Society, faced an SQL Slammer worm. Having been one of the 75,000 infected users, he called upon his skills and risk management experience, to ensure his team will be ready for when the next attack comes.
During his 25-year career in supply chain security and product security, he became an expert in engineering, security, and product design and he even served as the VP of R&D at Fortress. Today, he is the chapter leader at OWASP and a thought leader on the topic of supply chain security.
Understanding the product security supply chain
Everything we do in product security is part of somebody else’s supply chain. Manufacturers’ ability to secure products is directly influenced by the security measures of the entire supply chain. “I think most organizations know that they need to do something about supply chain security but they don’t necessarily know what that means,” Tony Turner said on the Left to Our Own Devices podcast.
The security of the product supply chain and third-party vendors has evolved beyond facility assessment,…
