You Gotta Fight For Your Right To Third Party - Mathew Caplan - NDC Security 2025

This talk was recorded at NDC Security in Oslo, Norway. #ndcsecurity #ndcconferences #security #developer #softwaredeveloper Attend the next NDC conference near you: https://ndcconferences.com https://ndc-security.com/ Subscribe to our YouTube channel and learn every day: @NDC Follow our Social Media! https://www.facebook.com/ndcconferences https://twitter.com/NDC_Conferences https://www.instagram.com/ndc_conferences Third-party relationships continue to expand rapidly as companies seek outsourced services and solutions to optimize performance. Consequently, threat surfaces have broadened leading to increased cyber-attacks on third parties with over half of all security incidents being third-party related. Recent global events have demonstrated the need for resilient supply chains whilst Environmental, Social, and Governance (ESG) and compliance to regulations creates greater scrutiny on third-party practices. This briefing is about how to cope with the challenges of Third-Party Risk Management (TPRM) from both a customer and a supplier perspective. The subject of third-party risk and supply chain security affects all organisations whether they be a supplier or a customer. These days organisations are typically both. This topic is very broad but relevant to everyone involved and interested in risk and security from application developers to CISO's. This presentation is both entertaining and thought-provoking and includes a sprinkling of popular culture, music, and video.