Software supply chain security is now one of the most critical domains in cybersecurity risk management. Compromised update mechanisms, including incidents involving widely used tools such as Notepad++, demonstrate how trust in software distribution can be exploited at scale.
Tom Hollingsworth, Event Lead at Tech Field Day and Networking Industry Analyst, joins Mitch Ashley, Vice President and Practice Lead, Software Lifecycle Engineering at Techstrong Research, along with Steve Puluka, Network & Security Engineer and Network Architect, Tech Field Day Delegate, to examine the architectural implications.
The conversation focuses on the need for verifiable integrity within code distribution pipelines and the expansion of accountability across development teams, hosting providers, and infrastructure operators. The shared responsibility model must mature beyond cloud infrastructure and address supply chain complexity directly.
Artificial intelligence is reshaping networking operations, introducing both operational efficiencies and new attack surfaces. Observability is evolving into a core security control, providing visibility that supports anomaly detection, resilience, and rapid containment.
The central message is clear: security must be embedded across the lifecycle, supported by transparency, disciplined incident response, and cross-functional collaboration.