Chair’s opening remarks

The anatomy of a supply chain attack

• How exactly a vendor compromise can become a downstream incident
• Early indicators of compromise that often go unnoticed
• Practical ways to assess and prioritise third-party risk, and some rapid response practices for third‑party incidents
• What metrics to track and improve supply chain cyber resilience