As large companies invest heavily in defenses, attackers increasingly turn to smaller suppliers where fewer resources often mean easier access. A single breach can mean the loss of an entire company network and the exposure of all data. Moreover, it can ripple through multiple companies if they share access to their networks. 

That is why the new NIS 2 Directive that became Danish law on 1 July 2025 includes the requirement to manage supply chain cyber risks. Hundreds of Danish companies (many of them SMEs) now count as critical infrastructure under the Directive and need to show that hey are managing their cyber risk. 

In short, supply chain cybersecurity is no longer optional. It’s quickly becoming a baseline expectation from regulators, customers, and business partners alike. 

And that means many SMEs now face the same challenge: Where do we start? 

To answer that question, we have a lineup of brilliant experts for an early evening send off.