W11 Securing the Supply Chain: Lessons Learned from Real Breaches

05/14/2025

3:30pm - 4:30pm

Level: Intermediate

John O'Neill, Sr.

Chief Technologist

AWS Solutions

The modern supply chain introduces significant cybersecurity risks, as seen in high-profile breaches like SolarWinds. In this session, I’ll explore the complexities of securing the supply chain, including third-party vendor management and software supply chain vulnerabilities. I’ll use real-world case studies to highlight the lessons learned from supply chain breaches, including the consequences of failing to secure third-party access.

We’ll also dive into actionable steps organizations can take to mitigate supply chain risks, such as conducting thorough vendor security assessments, implementing continuous monitoring, and using contractual protections. I’ll provide practical guidance on how to secure both software and hardware supply chains, as well as how to ensure that third-party vendors adhere to your security standards.

Attendees will leave with a clear understanding of supply chain security risks and actionable strategies for protecting their organization from third-party vulnerabilities.

You will learn:

  • Dive deep into the complexities of securing the modern supply chain, including third-party vendor management and software supply chain risks.
  • Share lessons from high-profile breaches (e.g., SolarWinds) and how organizations can develop resilient strategies to mitigate supply chain risks.
  • Provide practical steps for continuous monitoring, vendor security assessments, and contractual protections.