The increasing relevance of SBOM in maintaining regulatory compliance

Software bill of materials (SBOM) has moved from a nice add-on for inventorying software dependencies to a cornerstone of global regulatory compliance. Triggered by the 2021 U.S. Executive Order 14028, the industry has shifted its focus from mere adoption to data integrity. This session explores the 2025 updates to CISA’s Minimum Elements, addressing the critical need for consistency and quality in software transparency. It examines how these U.S. standards align with the EU’s CRA, which mandates strict security requirements for digital products. Platform engineering leaders will gain a clear understanding of how to navigate these evolving frameworks to help ensure their software remains compliant, secure, and ready for the international market in an era of heightened digital accountability.