Are you confident in your software supply chain security strategy?

Security Strategy & RoadmapThreat & Vulnerability Management

Very confident15%

Somewhat confident67%

Somewhat unconfident14%

Not at all confident2%

Other (explain in the comments)

400 PARTICIPANTS
2.4k viewscircle icon1 Upvotecircle icon1 Comment
Sort by:
Sustainable Supply Chain Adviser in Healthcare and Biotech2 years ago

In this area, one can never be too confident, given that the crooks are one step ahead of the security industry (as with the police in general in life). So vigilance and monitoring, advice from a good internal security team and/or from external insight providers is key to keeping up with the changes (at least that was my observation so far).

Content you might like

What channels do you use for your security awareness campaigns? Select all that apply.

Targeted emails44%

Org-wide newsletters61%

Lunch & learn sessions49%

Posters, desktop screen-savers/wallpapers37%

Security champions across all lines of business19%

Other (please specify)1%

View Results

Have you removed PII or other sensitive data from the products/services at your org that include Log4j?

Yes53%

Not yet – we’re working on it38%

No7%

I don’t know…1%

View Results

I’ve been digging into ways to strengthen Zero Trust on IBM i systems, especially as more orgs shift toward hybrid cloud. I’m curious, how are others approaching threat detection around shadow AI use and supplier exposure in these environments?

Apart from applying the patches just released, what other mitigation tactics are you using to address the zero-day SharePoint vulnerabilities impacting on-premises servers?

I wanted a point of view on migration from on-prem AD and SCCM to AAD and Intune. Would be great to have a perspective on, - Is there a real need since SCCM is still undersupport from Microsoft? - I understand that we can get rid of onprim AD Infrastructure and move on SaaS, but any other benefits we get by doing this?