Publication of the CLUSIT Supply Chain Security report

In March 2023 the Supply Chain Security report was published, with a contribution from Federico Cerutti within the activities promoted by the CLUSIT community.

The document addresses the security of digital supply chains, with attention to software dependencies, third parties, risk propagation, and the difficulty of maintaining control in complex ecosystems where the boundary between internal and external actors becomes increasingly blurred.

The report addresses one of the structural security problems of contemporary organisations, where a weakness in one supplier or dependency can propagate across an entire digital ecosystem.