Starting a SBOM Programme - The Pain Is Probably Temporary

No ratings

Presented at BSidesCharm 2025 by

Grey Fox

In my 3rd week working for a Fortune 500 company, I was tasked with designing and rolling out a programme to churn out software bills of material for our high inherent risk products. 5 months later, we're on the right side of the forthcoming supply chain security regulatory and compliance world. It wasn't easy, but it was sure worth the effort. I even made some friends along the way.