Understanding SBOMs: A Guide to Implementing NIST/CISA's SBOM Requirements

IF YOU'D LIKE TO JOIN LIVE AND/OR GET A COPY OF THE RECORDING, MAKE SURE TO SIGN UP HERE AND NOT JUST ON MEETUP: https://go.cycode.com/pbom-sl

Understanding SBOMs: A Practical Guide to Implementing NIST/CISA's Software Bill of Materials (SBOM) Requirements

Date: Wednesday, November 30th
Time: 10 am Pacific Time

As a result of the May 2021 Executive Order on Improving the Nation’s Cybersecurity (EO #14028), the US Department of Commerce published details for the “minimum elements” of a Software Bill of Materials (SBOM). An SBOM is a formal record containing the details and supply chain relationships of components used in building software and has been hailed as the first line of defense against software supply chain attacks.

This webinar provides an overview of the executive order including what constitutes an SBOM, and its intended purpose, usage, and shortcomings in software supply chain security. We will then explore how a pipeline bill of materials (PBOM) can be used to expand upon the foundation provided by SBOMs to give you more visibility and control over all the components that make up your software supply chain.

In this webinar you’ll learn:

• What an SBOM is and what its capabilities are
• What guidelines do NIST and the Whitehouse EO suggest regarding SBOMs
• Where SBOMs fall short and leave security gaps
• How to broaden and improve your software supply chain security with a PBOM