SBOM-a-Rama
To support a community effort to advance SBOM technologies, processes, and practices, CISA will facilitate the 2023 CISA SBOM-a-Rama. The goal of this meeting is to help the broader software and security community understand the current state of SBOM and what efforts have been made by different parts of the SBOM community, including CISA-facilitated community-led work and other activity from sectors and governments. Attendees are invited to ask questions, share comments, and raise further issues that need attention.
Registration is free and this event is open to anyone. CISA welcomes participation from anyone interested in learning about the current state of SBOM practice and implementation, including private sector practitioners, policy experts, academics, and representatives from non-U.S. organizations.

Date: Wednesday June 14th, 2023
Time: 9:00 a.m. to 3:00 p.m., Pacific Standard Time (Or, 12:00 p.m. to 6:00 p.m. EDT)
Location: The event will be a hybrid event held at the USC Hotel, 3540 S Figueroa St, Los Angeles, CA 90007, as well as virtually. Connection information and dial-in information will be made available soon.

Registration Information
- Register to attend in-person or virtual participation: CISA SBOM-a-rama Registration Link.
- Additionally, sign up to attend a virtual SBOM 101 background event the week before SBOM-a-Rama.
- View the Federal Register Notice of this meeting: Federal Register :: 2023 CISA SBOM-a-Ram

SBOM-a-Rama Agenda
Agenda for the SBOM-a-Rama (subject to change), which will take place on Wednesday, June 14th, 2023.
- Download a printer-friendly version of the agenda: SBOM-a-Rama 2023 Agenda
Session, Time |
Speaker |
Welcome (9:00 AM – 9:10 AM PT) |
CISA Leadership, USC, Allan Friedman |
INTERNATIONAL PARTNER |
|
EU Commission SBOM Work (9:10 AM – 9:20 AM) |
Benjamin Bogel (To Be Confirmed) |
SECTOR SPECIFIC SBOM WORK |
|
Finance (9:20 AM – 9:30 AM) |
Jonathan Meadows |
Healthcare (9:30 AM – 9:40 AM) |
Jim Jacobson & Jennings Aske |
Automotive (9:40 AM – 9:50 AM) |
Charlie Hart |
WORKING GROUP UPDATES |
|
Vulnerability Exploitability eXchange (9:50 AM – 10:15 AM) |
Art Manion |
Sharing & Exchanging (10:15 AM – 10:40 AM) |
Chris Blask |
BREAK (10:40 AM – 10:50 AM) |
|
Cloud & Online Applications (10:50 AM – 11:15 AM) |
Nisha Kumar, Bhargav Vivekanandan, & Ricardo Reyes |
Tooling & Implementation (11:15 AM – 11:40 AM) |
Kate Stewart & Melissa Rhodes |
On Ramps & Adoption (11:40 AM – 12:05 PM) |
Josh Corman and Audra Hatch |
LUNCH (12:05 PM – 12:55 PM) |
|
DISCUSSION |
|
Facilitated Discussion (12:55 PM – 2:15 PM) |
Allan Friedman |
BREAK (2:15 PM – 2:25 PM) |
|
US GOVERNMENT UPDATES |
|
CISA Self-Attestation Form (2:25 PM – 2:35 PM) |
Shon Lyublanovitz (TBC) |
FDA SBOM Work (2:35 PM – 2:45 PM) |
Jessica Wilkerson (TBC) |
INTERNATIONAL PARTNER |
|
Japanese METI SBOM Work (2:45 PM – 2:55 PM) |
Tomoko Sawada (TBC) |
CLOSING |
|
Closing Remarks (2:55 PM – 3:00 PM) |
Allan Friedman |