Supply chain disruptions can cripple critical operations, yet many private sector organisations lack full visibility into their extended supply chains. In this session, Justin Kuruvilla, Chief Cyber Security Strategist at Risk Ledger, explores real-world cyber incidents that expose the vulnerabilities of traditional third-party risk management (TPRM) practices. We will examine how blind spots in supply chains—especially in fourth, fifth, and nth-party dependencies—can lead to systemic failures.

Drawing on lessons from financial services, fintech, healthtech, and insurance, we will uncover why outdated, static assessments and siloed risk management approaches leave businesses exposed. The session will highlight how companies can transition to a collaborative, data-driven model that provides real-time risk intelligence, enhances supplier engagement, and strengthens resilience. Attendees will gain actionable insights on automating supply chain security, identifying concentration risks, and leveraging a defence-in-depth approach to mitigate evolving cyber threats.