At the Forrester Security & Risk Forum, ReversingLabs Field CISO Matt Rose talks about what an SBOM provides — and how it can be put to good use. Here's a preview.
The Forrester Security & Risk Forum is taking place this week in Washington D.C. with a full agenda, tackling a range of issues, from the cyber implications of geopolitical disruptions to the privacy and security implications of the Metaverse.
One of the big topics of conversation this year is, of course, software supply chain risks. ReversingLabs Field CISO Matthew Rose is on hand to present a talk on "Going Beyond the SBOM."
SBOMs are a hot topic right now — but also one surrounded by a lot of uncertainty. The question many organizations are wrestling with is less about whether they need an SBOM, and more about what they can do with an SBOM.
[ Get a free SBOM and supply chain risk analysis report ]
Rose outlines in his talk what type of information an SBOM provides, and how that information can be used. He also discusses how "checkbox" SBOM compliance, where SBOMs are done without any real purpose, isn't enough to protect you from software supply chain risks.
See our Evolution of Application Security special report to learn how app sec is evolving to tackle supply chain security. Plus: Explore how ReversingLabs Software Supply Chain Security — and its new secrets capabilities — can help your team modernize its approach.
Keep learning
- Learn more: SCA tools and how app sec is evolving to tackle supply chain security
- Track key trends, what's ahead: The State of Supply Chain Security 2022-23
- See special report: C-SCRM and federal supply chain security guidance
- Special report: Software supply chain and the SOC: Why end-to-end security is key
- NVD Analysis 2022: Why you need to modernize your software security approach
- SBOM: What it is — and why it matters for software supply chain security
- Get a free SBOM and software supply chain risk report