During the 2021 APEX CISO National Virtual Summit (#ApexAsembly) we explored how modern enterprise applications are no longer the single-vendor, monolithic software packages of a generation ago. Today’s modern enterprise application is a thin layer of business logic code sitting on top of a complex web of third-party platforms, frameworks and libraries so that for every 1 line of business logic code that you write, there are 10 lines of invisible third-party code executing inside your application stack that you didn’t write and have no security control over.
New approaches to securing the software supply chain are emerging which go inside the application at runtime to secure the invisible code and memory that comes from outside of your developers and outside of your security control. During this session we will discuss the vulnerability and compliance trends that are driving the rise of autonomous, zero-trust runtime security solutions for third-party code components and the various forms that such solutions take. We will conclude with a look to the future convergence of these runtime security solutions with other runtime, in-app products widely deployed today.