Over the last decade, SBOMs (software bill of materials) have grown from a niche idea to an integral part of numerous global regulations and software supply chain security initiatives.
No individual has done more to drive global SBOM awareness, adoption, and standardization than Dr. Allan Friedman, who led the U.S. government’s software supply chain security program from 2021 - 2025.
Today, I’m thrilled to announce that Allan has officially joined forces with FOSSA as a Senior Advisor. I wanted to share a few words explaining why I’m so excited about this partnership, including its significance for our customers.
A Shared Vision for the SBOM Ecosystem
FOSSA was one of the first vendors to release an SBOM management solution; our platform was even recognized by Forrester way back in 2021!
In the years since, our SBOM product has matured to meet our customers’ evolving needs in areas like regulatory compliance (FDA, PCI DSS, the CRA, and more), supplier risk management, and supply chain security.
We’ve had a front-row seat to the impact Allan has made on the SBOM ecosystem along the way.
From 2015 - 2025, Allan led a variety of U.S. government initiatives related to software supply chain security, often with a strong SBOM focus. He was instrumental in drafting language around an SBOM requirement for government purchasing, helping organizations understand that supply chain transparency was now table stakes.
Later, in his capacity as the U.S. government lead on software supply chain security, Allan helped spearhead the federal response to the critical log4shell vulnerability. Among the notable outcomes from this effort was the lasting impact of Allan’s work to position visibility and transparency as pivotal parts of addressing systemic risk from software supply chains.
Additionally, Allan was instrumental in developing the first-of-its-kind Global Government Expert Forum on SBOM, plus the drafting of the 2025 CISA Minimum Elements.
As we continue to work to provide solutions to help our customers tackle SBOM-related initiatives, we feel strongly that Allan’s unparalleled expertise and commitment to this domain represent a perfect fit with our vision. We look forward to how Allan’s insights will help us enable our customers to produce, ingest, analyze, and securely share SBOMs that are as complete, accurate, and useful as possible.
“FOSSA has long been recognized for its work helping organizations truly understand the composition of their software applications,” Allan told us. “The platform’s foundational ability to accurately detect and report on the open source dependencies within a project aligns so well with what teams need to manage modern SBOM programs. I’m excited to partner with FOSSA as they continue to support customers tackling a range of SBOM use cases.”
Allan’s Impact on FOSSA Customers and the SBOM Ecosystem
At this point, I think I’ve made clear that we’re *really* excited to have Allan on board as an advisor. But this is important news for our customers (and even non-customers who view our educational content) as well.
Allan will be involved in several important initiatives, including consulting with our customers and internal team, as well as helping us share news and deeper insights into why SBOMs and supply chain awareness matter, and how this topic continues to evolve.
I encourage you to stay tuned to our website and social media for more details about these programs in the coming weeks and months. In the meantime, I certainly welcome you to reach out to our team (hello@fossa.com) with any questions or feedback.
And, finally, I’d of course be remiss not to extend a public (and hearty) thank you to Allan for your trust in FOSSA as we move forward with this new partnership. Our team can’t wait to start working with you!