Cyberattacks pose risk to supply chain security, says Huawei

Huawei’s Global Cyber Security and Privacy Officer Sean Yang delivering a keynote at GovWare 2023
Huawei’s Global Cyber Security & Privacy Officer Sean Yang delivered a keynote presentation that explored addressing cyber risk & vulnerability management

Huawei’s Global Cyber Security and Privacy Officer, Sean Yang has delivered his keynote presentation titled "Enhancing Supply Chain Security in the New Digital Reality" at GovWare 2023

During his presentation at one of Asia’s leading cybersecurity events, Yang highlighted how cyberattacks are growing increasingly severe and posing significant challenges on supply chain security. To address these risks and challenges, he cites the necessity for collaborative efforts from both upstream and downstream stakeholders in the industry.

This presentation comes in the wake of Huawei being awarded the Cybersecurity Agency of Singapore's (CSA) Cyber Trust Mark Certification, highlighting the company’s global commitment to digital safety.

Significant cybersecurity challenges to impact supply chain

Huawei designs, develops, manufactures and sells telecoms equipment, consumer electronics and smart devices. IT also works to offer integrated solutions across telecom networks, IT, smart devices and cloud services.

Security is consistently an integral part of the company’s digital platform, which works to provide resilient end-to-end network security capabilities that ensure the security of customer data and applications. The company has also built and implemented its own end-to-end global cybersecurity and privacy protection assurance system in all domains. 

Building and implementing end-to-end global cyber security and privacy protection assurance systems is one of Huawei's key strategies. It actively works with governments, customers and industry partners to address cyber security and privacy challenges.

Yang told the conference that cyberattacks “are growing increasingly severe and pose significant challenges on supply chain security”. 

He added: “To address these risks and challenges, collaborative effort from both upstream and downstream stakeholders in the industry is necessary. 

“In order to ensure supply chain security, companies need to effectively build security into products, and focus on supplier management, open-source software management, R&D and production management.

Vulnerability management as “crucial”

“Effective vulnerability management is a crucial control of supply chain security. Companies need to effectively manage their upstream sources, including open-source and third-party,” Yang continued.

The establishment of solid vulnerability management programmes is critically important, given that they can help organisations to mitigate data theft and extortion risk with measures to prevent data exfiltration wherever possible.

Yang explained how companies will need to assure product security through secure development practices and continuous lifecycle security and providing excellent service to their downstream customers or tenants. 

He also shared on Huawei's vulnerability management practices as described in the "Huawei Vulnerability Management White Paper".

Yang also said product security must be “assured through secure development practices and continuous lifecycle security”, and that businesses “must provide excellent service to their downstream customers or tenants”.

He concluded his presentation by stating that Huawei will continue to contribute both capabilities and governance best practices to the industry. It will also collaborate with stakeholders with openness and transparency in order to build a secure ecosystem towards supply chain security.


For more insights into the world of Cyber - check out the latest edition of Cyber Magazine and be sure to follow us on LinkedIn & Twitter.

Other magazines that may be of interest - Technology Magazine | AI Magazine.

Please also check out our upcoming event - Net Zero LIVE on 6 and 7 March 2024.


BizClik is a global provider of B2B digital media platforms that cover Executive Communities for CEOs, CFOs, CMOs, Sustainability leaders, Procurement & Supply Chain leaders, Technology & AI leaders, Cyber leaders, FinTech & InsurTech leaders as well as covering industries such as Manufacturing, Mining, Energy, EV, Construction, Healthcare and Food.

BizClik – based in London, Dubai, and New York – offers services such as content creation, advertising & sponsorship solutions, webinars & events.


Featured Articles

How Microsoft Is Helping Rural Hospitals Get Cyber Secure

Microsoft is giving rural hospitals a hand to help them get their cybersecurity up to snuff to keep them running amid the rising attacks on healthcare

SpiceRAT: Cisco Talo Sound Alarm Over New Trojan

Remote Access Trojans are resurfacing, and Cisco Talo shows they are doing so with increased sophistication

CrowdStrike & HPE: Unifying IT and Security for Secure AI

CrowdStrike and HPE are joining to integrate their Falcon platform and GreenLake cloud and OpsRamp AIOps to give an overview of AI infrastructure

Zscaler and NVIDIA Join to Upskill Zero Trust with Gen AI

Network Security

Gigamon Sound Alarm on Cloud Security as Unseen Attacks Soar

Cloud Security

Helping APAC Curb the Threat of Cyber Attacks

Hacking & Malware