Name: The Missing Link - How we collect and leverage SBOMs
Start: 2024-09-26T15:30:00-0700
End: 2024-09-26T16:15:00-0700

THE MUST ATTEND EVENT FOR CYBERSECURITY PROFESSIONALS

Thursday September 26, 2024 3:30pm - 4:15pm PDT

Room: Seacliff CD

There is some debate as to how SBOMs can enhance vulnerability management practices, and some believe that collecting SBOMs from internal teams or suppliers is too difficult and time-consuming. Learn how one company has collected thousands of our product SBOMs and how we are leveraging the SBOMs as part of our corporate product CERT to quickly analyze and focus our attention when time is of importance. This presentation describes how we modified our policies and processes to collect, generate, and store thousands of SBOMs. You will hear how we have leveraged SBOMs during the Log4j and OpenSSL vulnerability events. Then we will conclude with key learnings, suggestions, and opportunities for improvement.

Speakers

Cassie Crossley

VP, Supply Chain Security, Schneider Electric

Cassie Crossley, Vice President, Supply Chain Security in the global Cybersecurity & Product Security Office at Schneider Electric, is an experienced cybersecurity technology executive in Information Technology and Product Development and author of “Software Supply Chain Security... Read More →

Thursday September 26, 2024 3:30pm - 4:15pm PDT
Room: Seacliff CD

Breakout: Defender Track

Audience Beginner

OWASP 2024 Global AppSec San Francisco

Cassie Crossley

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!