Beyond the Scan: Professional SBOM Management and Risk Mitigation with Dependency-Track and VEX
Workshop
Generating a Software Bill of Materials (SBOM) is only the first step toward compliance with upcoming regulations like the EU Cyber Resilience Act (CRA). The real challenge lies in managing these artifacts at scale, tracking vulnerabilities across a diverse portfolio, and communicating real-world risks effectively.
This workshop takes you beyond simple pipeline scanning. We will dive into OWASP Dependency-Track, an intelligent component analysis platform that allows organizations to identify and reduce risk in their software supply chain. You will learn how to transform static SBOMs into a living, automated security ecosystem.
Speaker
Marc Herren
Making complex DevSecOps challenges disappear through platform engineering magic! I work as a platform engineer with Kubernetes, cloud-native technologies, and AI-enhanced automation. As such, I do a ...
Gold Sponsors
Silver Sponsors
Evening Event, Coffee, Meals, Snacks Sponsors
Join as Evening Event, Coffee, Meals, Snacks Sponsor!
Bronze Sponsors
Join as Bronze Sponsor!
Community Sponsors
Join as Community Sponsor!
Partner Sponsors
Join as Partner Sponsor!
