Join us for our Technical Meetup Series for a deep dive on software bill of materials (SBOM) and open source libraries. Checkmarx experts Steve Boone, Alex Cohen, and James Brotsos will walk you through security vulnerabilities you might not even know you had. They’ll also discuss the latest industry trends and application security best practices. It’ll be an interactive discussion, so bring your questions and pick our brains about how to improve your processes. One registration will sign you up for both sessions.
Session 1: Software Bill of Materials (SBOM)
Tuesday, November 16 | 10 a.m. PST/ 1 p.m. EST
Governments around the world are passing more and more cybersecurity-related legislation, mandates, and such—but are these really improving security? In many cases, the answer is no. However, that doesn’t mean it’s time to admit defeat.
In this technical meetup, our experts will cover all the ins and outs of SBOMs. You’re welcome to join this open discussion and participate with any questions you might have.
In our first session, the team will cover:
- Why the government is requiring an SBOM
- The government’s requirements for an SBOM
- Supported SBOM formats the government will accept
- Short- and long-term benefits of producing and maintaining an SBOM
- What’s next for SBOMs and how requirements might evolve
Sign up for this session, and you’ll be registered for the rest of the series automatically. Can’t wait to have you with us!
Session 2: Open Source Supply Chain Attacks
Thursday, December 2 | 10 a.m. PST/ 1 p.m. EST
Open source software is everywhere, and it probably makes up much of your codebase. Still, how much do you really know about open source supply chain risks, threats, and attacks? Probably not as much as you should. That’s why you don’t want to miss this meetup.
In this technical meetup, our experts will cover everything you ought to know about the open source supply chain, including how you can protect yourself and your organization from potential disaster.
In this session, the team will cover:
- What constitutes an open source supply chain attack
- What’s different about attacks like the SolarWinds breach
- Why supply chain attacks are becoming so pervasive
- Dependency confusion, why it matters, and examples
- How to protect yourself from supply chain attacks
Join our session to get the open source intel you need.