Managing Third-Party Risk in Modern Government Software Supply Chains

A practical look at how government leaders strengthened software supply chain security in cloud-first environments to reduce risk and protect service delivery.

Like Comment

Governments across Australia and New Zealand moved decisively toward cloud-based platforms to improve the resilience, scalability and performance of digital services. In Australia, the new Whole-of-Government Cloud Policy set a clear direction for agencies to prioritise cloud computing solutions, strengthen security and governance, and move away from ageing ICT environments, with the policy taking effect from 1 July 2026.

This shift placed new pressure on how software was built, secured and released. As agencies increased the pace of change and relied more heavily on third-party components and automated delivery pipelines, traditional controls designed for slower, on-premises environments proved inadequate. Fragmented DevOps practices, limited visibility of software components and inconsistent security integration increased exposure to supply chain vulnerabilities.

For senior decision-makers, this became an accountability issue. Cloud policies, cyber security expectations and audit scrutiny required executives to demonstrate that software deployed into cloud environments was secure, governed and traceable. Without stronger assurance mechanisms aligned to cloud-first delivery, agencies faced the risk of service disruption, compliance failures, escalating remediation costs and loss of public trust at a time when digital services underpinned essential government functions.

Key discussion points:

  • Aligned software delivery with cloud policy requirements: How leaders ensured DevSecOps practices supported whole-of-government cloud direction and accountability expectations.
  • Strengthened assurance over software components and dependencies: Why visibility of code, artefacts and third-party components was critical in cloud-based environments.
  • Embedded security and compliance into automated delivery: How governance and policy controls were enforced consistently as release frequency increased.
  • Managed supply chain risk in shared and multi-cloud environments: What effective oversight looked like when software spanned agencies, vendors and platforms.
  • Supported executive confidence in cloud-enabled delivery: How coordinated governance enabled speed without sacrificing control or assurance.

This session was intended for senior public sector leaders responsible for cloud strategy, digital delivery, cyber security and software assurance across government and public sector entities.


Meet your facilitators

Jesse Emery

Jesse Emery

Director Secretariat , Strategy and Prioritisation Branch, Digital Transformation Agency

Yash

Yashaswi Mudumbai

Senior Director of Solution Engineering, APAC, JFrog

mike holland

Mike Holland

Senior Solutions Engineer, ANZ, JFrog

Most Popular Insights

Protecting Government Services from Modern Identity Threats: Why Identity Is Now Critical to AI, Compliance and Service Continuity
Protecting Government Services from Modern Identity Threats: Why Identity Is Now Critical to AI, Compliance and Service Continuity
ON DEMAND 18 Mar 2026
Revolutionizing Community Health: Building a Smarter, Connected Healthcare Future for Colorado
Revolutionizing Community Health: Building a Smarter, Connected Healthcare Future for Colorado
ON DEMAND 19 Feb 2026
No Wrong Door: Building a Unified Experience for Citizens
No Wrong Door: Building a Unified Experience for Citizens
ON DEMAND 7 Feb 2026
Ensuring Accessibility and Bridging the Digital Divide: Colorado’s Approach to Inclusive Technology and Digital Equity
Ensuring Accessibility and Bridging the Digital Divide: Colorado’s Approach to Inclusive Technology and Digital Equity
ON DEMAND 5 Feb 2026
Digital NSW 2025: Practical next steps to delivering on 2026 priorities with Laura Christie
Digital NSW 2025: Practical next steps to delivering on 2026 priorities with Laura Christie
ON DEMAND 11 Dec 2025
Do you ‘suffer fools gladly’?
Do you ‘suffer fools gladly’?
ON DEMAND 14 Oct 2025
Cracking the Code to High-Impact Leadership
Cracking the Code to High-Impact Leadership
ON DEMAND 23 May 2025
Fostering a Culture of Retention and Innovation in the Public Sector Workforce
Fostering a Culture of Retention and Innovation in the Public Sector Workforce
ON DEMAND 20 Mar 2025
Driving Innovation: Uruguay Path to Digital Transformation
Driving Innovation: Uruguay Path to Digital Transformation
ON DEMAND 19 Mar 2025
Adopting Zero Trust Strategies to Strengthen Cybersecurity
Adopting Zero Trust Strategies to Strengthen Cybersecurity
ON DEMAND 14 Mar 2025
Revolutionizing Environmental Regulation in Alberta Through Technology
Revolutionizing Environmental Regulation in Alberta Through Technology
ON DEMAND 3 Jan 2025
California’s Technology Strategy: What Is on the Horizon
California’s Technology Strategy: What Is on the Horizon
ON DEMAND 14 Apr 2024
The Intersection of Technology, Security and Privacy at Service NSW
The Intersection of Technology, Security and Privacy at Service NSW
ON DEMAND 6 Dec 2023
Equity, Diversity, and Inclusion as Part of Organizational Transformation
Equity, Diversity, and Inclusion as Part of Organizational Transformation
ON DEMAND 11 Oct 2023
Generative AI, Trust & the Public Sector
Generative AI, Trust & the Public Sector
ON DEMAND 29 Aug 2023

Most Popular Partner Content

Beyond legacy: The human and structural risks slowing modernisation in government and regulated industries
Beyond legacy: The human and structural risks slowing modernisation in government and regulated industries
INDUSTRY TRENDS 17 Feb 2026
Getting AI Under Control: The Case for Strong Governance and Management
Getting AI Under Control: The Case for Strong Governance and Management
INDUSTRY TRENDS 16 Feb 2026
Modern Data Platform: a viable alternative to traditional data warehouse architectures
Modern Data Platform: a viable alternative to traditional data warehouse architectures
INDUSTRY TRENDS 13 Feb 2026
Secure AI starts with data: how a Modern Data Platform enables trusted AI use cases
Secure AI starts with data: how a Modern Data Platform enables trusted AI use cases
INDUSTRY TRENDS 11 Feb 2026
Australian data hosting is now available for Figma customers on Enterprise
Australian data hosting is now available for Figma customers on Enterprise
INDUSTRY TRENDS 11 Feb 2026
Midnight In The War Room
Midnight In The War Room
INDUSTRY TRENDS 17 Dec 2025
Tips from Figma for making your site more accessible
Tips from Figma for making your site more accessible
INDUSTRY TRENDS 5 Dec 2025
Private LLM Services for secure, compliant AI. Built for when Public AI won’t do.
Private LLM Services for secure, compliant AI. Built for when Public AI won’t do.
INDUSTRY TRENDS 1 Aug 2025
Are AI Apps safe to use? How to securely adopt AI in your agency.
Are AI Apps safe to use? How to securely adopt AI in your agency.
INDUSTRY TRENDS 15 Feb 2025
Unlock the Strategic Power of AI for Information Governance in 2025
Unlock the Strategic Power of AI for Information Governance in 2025
INDUSTRY TRENDS 2 Dec 2024
AWS vs Microsoft Azure vs Google Cloud vs Oracle Cloud Infrastructure: A Comprehensive Comparison
AWS vs Microsoft Azure vs Google Cloud vs Oracle Cloud Infrastructure: A Comprehensive Comparison
INDUSTRY TRENDS 12 Sep 2024
Using the Viable System Model to Improve Government Operations
Using the Viable System Model to Improve Government Operations
GUIDES 3 May 2024
Leveraging the Strength of Centaur Teams: Combining Human Intelligence with AI's Abilities
Leveraging the Strength of Centaur Teams: Combining Human Intelligence with AI's Abilities
INDUSTRY TRENDS 20 Oct 2024
Everything You Need to Know About Oracle 23c
Everything You Need to Know About Oracle 23c
INDUSTRY TRENDS 24 Sep 2024
The Role of Database Management in Business Growth
The Role of Database Management in Business Growth
INDUSTRY TRENDS 16 Apr 2024