Name: SBOMs in the Real World: Practical Guidance for Managing Three Common SBOM Scenarios - Cortez Frazier Jr., FOSSA
Start: 2025-06-25T16:20:00-0600
End: 2025-06-25T16:40:00-0600

June 23 - 25, 2025
Denver, Colorado
View More Details & Registration
Note: The schedule is subject to change.

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for Open Source Summit North America 2025 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

This schedule is automatically displayed in Mountain Daylight Time (UTC/GMT -6). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date."

IMPORTANT NOTE: Timing of sessions and room locations are subject to change.

Wednesday June 25, 2025 4:20pm - 4:40pm MDT

Bluebird Ballroom 2F

The last 12-18 months have been a landmark period for SBOM (software bill of materials) adoption. Although a fair number of organizations have been producing SBOMs for multiple years (often for specific regulatory compliance purposes), a much larger group has recently implemented broader SBOM management programs that cover a wider range of use cases.

This presentation — “SBOMs in the Real World: Practical Guidance for Three Common SBOM Scenarios” — will focus on three of these emerging areas:

SBOM generation and distribution to meet customer requests and new regulatory requirements
SBOM aggregation from internal teams and product units to facilitate centralized vulnerability management and response
SBOM ingestion from external software supplier networks to facilitate first- and third-party vulnerability management and response

Each section of this talk — which is based on extensive firsthand experience directly supporting numerous SBOM programs (from organizations in multiple regions, industries, and stages of maturity) — will include specific guidance to help attendees understand how SBOM programs within their organizations can more effectively manage these scenarios.

Speakers

Cortez Frazier Jr.

Principal Product Manager, FOSSA

Cortez Frazier Jr. is the product lead for FOSSA. FOSSA is a developer software composition analysis tool for managing open source license compliance and security vulnerabilities. Before joining FOSSA, Cortez served as product lead for all of Puppet’s SaaS-based products Earlier... Read More →

Wednesday June 25, 2025 4:20pm - 4:40pm MDT
Bluebird Ballroom 2F

Standards + Specifications

Audience Experience Level Intermediate

Open Source Summit North America 2025

Cortez Frazier Jr.

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!