Other

SBOM-a-Rama

Time
9:00 a.m. to 3:00 p.m., Pacific Standard Time
Location type
Other
Location
Los Angeles CA
Delivery
Live
Format
Other

To support a community effort to advance SBOM technologies, processes, and practices, CISA will facilitate the 2023 CISA SBOM-a-Rama. The goal of this meeting is to help the broader software and security community understand the current state of SBOM and what efforts have been made by different parts of the SBOM community, including CISA-facilitated community-led work and other activity from sectors and governments.

Light blue section divider.

2023 SBOM-a-Rama

 

Light blue section divider.

SBOM-a-Rama Agenda

Session, Time

Speaker

Welcome (9:00 AM – 9:10 AM PT)

Allan Friedman (CISA)

Eric Goldstein, Executive Assistant Director for Cybersecurity (CISA)

Dr. Nenad Medvidović, Chair, Department of Computer Science (USC)

INTERNATIONAL PARTNER

 

EU Commission SBOM Work (9:10 AM – 9:20 AM)

Benjamin Bogel 

SECTOR SPECIFIC SBOM WORK

 

Finance (9:20 AM – 9:30 AM)

Jonathan Meadows

Healthcare (9:30 AM – 9:40 AM)

Jim Jacobson & Jennings Aske

Automotive (9:40 AM – 9:50 AM)

Charlie Hart

WORKING GROUP UPDATES

 

Vulnerability Exploitability eXchange (9:50 AM – 10:15 AM)

Art Manion

Sharing & Exchanging (10:15 AM – 10:40 AM)

Chris Blask & Aruneesh Salhotra

BREAK (10:40 AM – 10:50 AM)

Cloud & Online Applications (10:50 AM – 11:15 AM)

Nisha Kumar, Bhargav Vivekanandan, & Ricardo Reyes

Tooling & Implementation (11:15 AM – 11:40 AM)

Kate Stewart & Melissa Rhodes

On Ramps & Adoption (11:40 AM – 12:05 PM)

Josh Corman & Audra Hatch

LUNCH (12:05 PM – 12:55 PM)

DISCUSSION

 

Welcome Back (12:55 PM – 1:00 PM)

Sarah Beckel (Vulnerability Management, CISA)

Facilitated Discussion (1:00 PM – 2:15 PM)

Allan Friedman (CISA)

BREAK (2:15 PM – 2:25 PM)

 

US GOVERNMENT UPDATES

 

CISA Self-Attestation Form (2:25 PM – 2:35 PM)

Shon Lyublanovitz (CISA)

Medical Device SBOM Requirements Update (2:35 PM – 2:45 PM)

TBD

INTERNATIONAL PARTNER

 

Japanese METI SBOM Work (2:45 PM – 2:55 PM)

Daisuke Hoshi (METI)

CLOSING

 

Closing Remarks (2:55 PM – 3:00 PM)

Allan Friedman (CISA)

Upcoming Events

SEP 25 - SEP 27

WaterPro Conference 2023

CONFERENCE | IN-PERSON
WaterPro Conference
SEP
26

Preventing Web and Email Server Attacks Cyber Range Training (IR205)

TRAINING | VIRTUAL/ONLINE
SEP
26

Supply Chain Illumination: A Repeatable Hardware Bill of Materials Framework

VIRTUAL/ONLINE
A Repeatable Hardware Bill of Materials Framework
SEP
27

See What Attackers See: CISA’s No-Cost Vulnerability Scanning Service for Visibility

VIRTUAL/ONLINE
CISA will be joining the Water Information Sharing and Analysis Center (WaterISAC) for a webinar to talk about the benefits of its no-cost Vulnerability Scanning service.