CPE | Beyond the SBOM: Defending the Software Supply Chain Against Modern Attacks - Seguridad Mania.com - España y América Latina

Earn 1.5 CPE Credits on this webinar. Modern enterprises increasingly depend on sprawling software ecosystems - commercial tools, open‑source components, cloud services, and vendor‑managed infrastructure. While SBOMs have become a critical step toward transparency, they are not enough to keep pace with today’s accelerated exploitation cycles. Attackers now weaponize vulnerabilities within hours, automate reconnaissance across dependency chains, and target infrastructure layers that sit well beyond the reach of traditional software inventories. This session brings together experts who will unpack how adversaries are exploiting the gaps between software, infrastructure, and vendor ecosystems - and what organizations can do to close them. We’ll explore how to operationalize SBOMs, strengthen pre‑deployment controls, harden infrastructure dependencies, and build a continuous monitoring posture capable of detecting and mitigating risk at enterprise scale. Learning Objectives • Understand why SBOMs alone cannot defend against modern supply chain attacks and how adversaries exploit infrastructure, identity, and deployment pathways. • Identify practical methods to evaluate and mitigate vendor and open‑source risks before software is purchased, deployed, or integrated into critical workflows. • Learn how to collaborate effectively with vendors to remediate vulnerabilities, validate security claims, and maintain trust throughout the software lifecycle. • Explore continuous monitoring strategies that provide real‑time visibility into emerging risks across both software and infrastructure supply chains.