Charlie Jones and Priyanka Raghavan discuss third-party software risks, case studies, secure software development frameworks, laws and regulations, and advise on tackling enterprise risks. They cover definitions, importance of managing risks, supply chain attack case studies, NIST secure software development framework, Salsa framework for security, transitive dependencies, automation for risk management, accountability in mitigating risks, and tools for software supply chain risk testing.
