Securing ICS software supply chains is becoming increasingly urgent. Attackers, including criminal and state-sponsored groups, are turning their attention to the ICS supply chain as fertile ground for exploitation. And it is not going unnoticed. Not only are critical industries starting to devote serious resources towards the problem, but regulators are stepping in, like in the power industry, where supply chain regulations such as NERC-CIP-013 are taking effect in October. And with mounting attacks on the medical industry during COVID-19, new regulatory pressures are inevitable. Securing ICS supply chains is a complex undertaking and this virtual conference will highlight key issues, the limitations of currently available technologies, and solutions for safeguarding against attacks.