Managing Third-Party and Supply-Chain Risk in Mobile Ecosystems

Every mobile app relies on SDKs, APIs, and third-party components, but those dependencies can introduce critical security and privacy risks. This presentation unpacks common supply-chain threats, from malicious SDKs to insecure open-source libraries. In addition we will address the impact of AI on these ecosystems and the enterprise. Finally, we’ll review best practices for assessing, monitoring, and governing third-party risks, aligned to enterprise mobile app policies and OWASP standards.