The new CIO security priority: Your software supply chain

Software supply chain attacks are expected to rise due to insecure supply chains. Such attacks, targeting vulnerabilities in commonly used software components or build pipelines, are considered the second biggest threat for 2022. One solution to managing these threats is the introduction of a software bill of materials (SBOM), in line with White House executive order 14028, which gives companies insight into their inventory and security weaknesses. Policies on open-source software usage and building secure developmental processes are also crucial.