Events

The landscape of global regulations around Software Bill of Materials (SBOM) and OSS compliance is changing rapidly. This webinar offers a high-level exploration of the latest requirements and practical challenges, focusing on the US, Indian, and European contexts. Our expert presenters will demystify the CISA minimum SBOM elements, explain why usage information is increasingly vital for license compliance, and discuss the complexities of providing end-of-life data for open source and commercial components.

Attendees will gain insights into how Indian CERT-In and European Cyber Resilience Act (CRA) regulations are shaping supplier obligations, and how these changes impact US organizations working internationally. The session will highlight real-world strategies for managing support windows, responding to customer demands, and preparing for audits, whether you’re dealing with open source projects or commercial software.

Join us for a comprehensive “regulations roundup” that brings together perspectives from multiple regions, clarifies what’s mandated now, and offers practical advice for staying compliant and competitive in a global market.

Speakers:
Dr. Andreas Kotulla, Founder and Managing Director at Bitsea
Dr. Andreas Kotulla is the founder and managing director of Bitsea and has been working in IT for more than 25 years. Bitsea is a leading provider of software audits and sustainable open source security, risk and compliance management. Since 2008, he and his company have been advising well-known Fortune-500-corporations in the communications, logistics, retail, automotive and aerospace industries.

Venkat Ram Donga, Product Management Director at Revenera
Venkat is the Product Management Director for Software Composition Analysis (SCA) solutions at Revenera. With extensive experience in product strategy and thought leadership, he is committed to delivering innovative solutions that maximize the value and effectiveness of SCA for clients worldwide.

Beyond the Scan: How Leaders Use SBOMs to Manage Open Source Risk
Description

Attendees will learn how to turn SBOMs and open-source audits into practical decision-making tools rather than compliance checklists. The session shows how to translate technical findings such as CVEs, license issues, and abandoned dependencies into business, legal, and regulatory risk that executives can act on. Participants will gain frameworks for prioritizing risk, communicating clearly with leadership, and building lightweight governance and reporting processes that improve security outcomes without slowing delivery.

Speaker: Marcus Lucero

On December 2nd, 2025 and December 3rd, 2025, the working group meeting on “Open Source in Practice – Retro 2025 and Planing 2026” will take place in Nürnberg.

December 2nd at 12:00 pm – 17:00 pm.
December 3rd at 10:00 pm – 15:00 pm.

This is a hybrid meeting.

The Cloud Native Computing Foundation’s flagship conference brings together adopters and technologists from leading open source and cloud native communities in Atlanta, Georgia from November 10-13, 2025. Be a part of the conversation as CNCF Graduated, Incubating, and Sandbox Projects unite for four days of collaboration, learning, and innovation to drive the future of cloud native computing.

Register here

The 10th Edition of the Boston Cybersecurity Summit connects cybersecurity executives and seasoned practitioners responsible for protecting their companies’ critical infrastructures with innovative solution providers and renowned information security experts. Admission offers attendees access to all interactive panels, discussions, catered breakfast, lunch and cocktail reception.

Register here.

After all these years, open source skills are more important and sought after than ever. More than anything, ATO is an educational conference where attendees learn about new technologies and topics, and it’s always been that way. The goal is for attendees to leave having learned something or been made aware of something new.

Register here.

LF Energy is the community for collaboration on open industrial-grade technology platforms and agile specifications for the energy transition. LF Energy Summit North America will gather electric utilities, technology vendors, policymakers, regulators, global energy companies, researchers, and other industry stakeholders to learn about open source solutions for energy systems. The event will feature presentations of ongoing work from the LF Energy ecosystem, as well as to collaborate and share best practices to accelerate the energy transition.

Get more Information here

Join Bitsea and other industry experts for the SCA User Group, an interactive virtual event focused on open source risk management, evolving regulations, and practical ways to strengthen your compliance and security posture.

Register here

On September 17th, 2025 at 12:00 pm to 17:00 pm the working group meeting on “Open Source in Practice – Economical” will take place in Berlin.

On September 18th, 2025 at 10:00 pm to 15:00 pm the 11th the Bitkom Forum Open Source zum Thema on “Open Source in Praxis – innovative, Compliant, Economical”

This is a hybrid meeting.

Modern Open Source Risk Management – What You Should Be Doing Now

Open source software powers nearly every modern application, but with rapid adoption and growing code complexity come real risks. From evolving global regulations to the growing use of AI-generated code, today’s open source landscape demands a proactive and modern approach to risk management.

Register here.