Allan Friedman on SBOMs in Financial Services: PCI DSS, DORA, and More

Over the past few years, several SBOM (software bill of materials) regulations have been rolled out in the financial services industry. These include PCI DSS (the Payment Card Industry Data Security Standard), DORA (the European Union's Digital Operational Resilience Act), and SEBI (the Securities and Exchange Board of India), among others.

Given the fact that these regulations are new and not entirely clear in their requirements, we know it's been a challenge for financial services organizations to determine the most efficient and effective path toward compliance.

To help in this effort, we invite you to join Allan Friedman — the U.S. government's former Software Supply Chain Security Head, and a leading figure in the global SBOM movement — for a webinar that will offer practical guidance for financial services entities looking to strengthen their SBOM programs.

Allan will cover:

• Details of the SBOM requirements in PCI DSS, DORA, and SEBI
• Practical guidance for organizations to manage these requirements (including specific suggestions for early-stage, mid-stage, and advanced SBOM programs)
• The intersection of SBOMs and software licensing (and why it matters from a sustainability perspective)
• Benefits for financial services organizations to a strong SBOM program beyond regulatory compliance