Allan Friedman

Allan Friedman is Senior Advisor and Strategist at the Cybersecurity and Infrastructure Security Agency. He coordinates the global cross-sector community efforts around software bill of materials (SBOM). He was previously the Director of Cybersecurity Initiatives at NTIA, leading pioneering work on vulnerability disclosure, SBOM, and other security topics. Prior to joining the Federal government, Friedman spent over a decade as a noted information security and technology policy scholar at Harvard’s Computer Science department, the Brookings Institution, and George Washington University’s Engineering School. He is the co-author of the popular text Cybersecurity and Cyberwar: What Everyone Needs to Know, has a C.S. degree from Swarthmore College and a Ph.D. from Harvard University.

View Allan's Profile on Twitter

presentation

By Our Powers Combined: Critical Infrastructure Partners for Transparency

On June 7, 2022

presentation

Tooling up: Getting SBOMs to Scale

On June 6, 2022

podcast

SBOM: Where We’ve Come From, and Where We’re Going

presentation

SBOM: Where We’ve Come From, and Where We’re Going

presentation

SBOM: Where We’ve Come From, and Where We’re Going

presentation

SBOM: Where We’ve Come From, and Where We’re Going

presentation

SBOM: Where We’ve Come From, and Where We’re Going

presentation

SBOM: Where We’ve Come From, and Where We’re Going

presentation

Allan Friedman

By Our Powers Combined: Critical Infrastructure Partners for Transparency

Tooling up: Getting SBOMs to Scale

SBOM: Where We’ve Come From, and Where We’re Going

Live Deeper Dive: Serverless Architecture Security Patterns for Securing the Unseen

Live Deeper Dive: Infosec Makeover: Love it or Leave it, Product Security is Here to Stay

Live Deeper Dive: Navigating the Unknowable: Resilience through Security Chaos Engineering

Live Deeper Dive: AppSec’s Future and the Rise of the Chief Product Security Officer

DevSecOps & Software Security Thursday Morning Networking Lounge

Sipping Bill of Materials

Lightning Talks: Challenge Accepted: 3 Experts, 3 Big Ideas on Supply Chain Security

Revisiting Public-Private Collaboration: Asian and Global Perspectives

What’s in the Box? Software Bill of Materials for IoT

Software Bill of Materials: Progress toward Transparency of Third-Party Code

Software Bill of Materials: Transparency in the SW Supply Chain

IoT and Critical Infrastructures: A Collision of Fundamentals?

Transparency of SW and IoT Components: An Open Approach to Bill of Materials

IoT Legal and Policy Issues: The Global Perspective

Life and Death: Security Considerations for Safety-Critical Industries

Securing the Things with Internet: Law and Technical Issues for IoT

What Do You Mean, “Patch”? A Shared Vision of IoT Security Updates

By Our Powers Combined: Critical Infrastructure Partners for Transparency

Tooling up: Getting SBOMs to Scale

SBOM: Where We’ve Come From, and Where We’re Going

Live Deeper Dive: Serverless Architecture Security Patterns for Securing the Unseen

Live Deeper Dive: Infosec Makeover: Love it or Leave it, Product Security is Here to Stay

Live Deeper Dive: Navigating the Unknowable: Resilience through Security Chaos Engineering

Live Deeper Dive: AppSec’s Future and the Rise of the Chief Product Security Officer

DevSecOps & Software Security Thursday Morning Networking Lounge

Sipping Bill of Materials

Lightning Talks: Challenge Accepted: 3 Experts, 3 Big Ideas on Supply Chain Security

Revisiting Public-Private Collaboration: Asian and Global Perspectives

What’s in the Box? Software Bill of Materials for IoT

Software Bill of Materials: Progress toward Transparency of Third-Party Code

Software Bill of Materials: Transparency in the SW Supply Chain

IoT and Critical Infrastructures: A Collision of Fundamentals?

Transparency of SW and IoT Components: An Open Approach to Bill of Materials

IoT Legal and Policy Issues: The Global Perspective

Life and Death: Security Considerations for Safety-Critical Industries

Securing the Things with Internet: Law and Technical Issues for IoT

What Do You Mean, “Patch”? A Shared Vision of IoT Security Updates

By Our Powers Combined: Critical Infrastructure Partners for Transparency

Tooling up: Getting SBOMs to Scale

SBOM: Where We’ve Come From, and Where We’re Going

Live Deeper Dive: Serverless Architecture Security Patterns for Securing the Unseen

Live Deeper Dive: Infosec Makeover: Love it or Leave it, Product Security is Here to Stay

Live Deeper Dive: Navigating the Unknowable: Resilience through Security Chaos Engineering

Live Deeper Dive: AppSec’s Future and the Rise of the Chief Product Security Officer

DevSecOps & Software Security Thursday Morning Networking Lounge

Sipping Bill of Materials

Lightning Talks: Challenge Accepted: 3 Experts, 3 Big Ideas on Supply Chain Security

Revisiting Public-Private Collaboration: Asian and Global Perspectives

What’s in the Box? Software Bill of Materials for IoT

Software Bill of Materials: Progress toward Transparency of Third-Party Code

Software Bill of Materials: Transparency in the SW Supply Chain

IoT and Critical Infrastructures: A Collision of Fundamentals?

Transparency of SW and IoT Components: An Open Approach to Bill of Materials

IoT Legal and Policy Issues: The Global Perspective

Life and Death: Security Considerations for Safety-Critical Industries

Securing the Things with Internet: Law and Technical Issues for IoT

What Do You Mean, “Patch”? A Shared Vision of IoT Security Updates

By Our Powers Combined: Critical Infrastructure Partners for Transparency

Tooling up: Getting SBOMs to Scale

SBOM: Where We’ve Come From, and Where We’re Going

Live Deeper Dive: Serverless Architecture Security Patterns for Securing the Unseen

Live Deeper Dive: Infosec Makeover: Love it or Leave it, Product Security is Here to Stay

Live Deeper Dive: Navigating the Unknowable: Resilience through Security Chaos Engineering

Live Deeper Dive: AppSec’s Future and the Rise of the Chief Product Security Officer

DevSecOps & Software Security Thursday Morning Networking Lounge

Sipping Bill of Materials

Lightning Talks: Challenge Accepted: 3 Experts, 3 Big Ideas on Supply Chain Security

Revisiting Public-Private Collaboration: Asian and Global Perspectives

What’s in the Box? Software Bill of Materials for IoT

Software Bill of Materials: Progress toward Transparency of Third-Party Code

Software Bill of Materials: Transparency in the SW Supply Chain

IoT and Critical Infrastructures: A Collision of Fundamentals?

Transparency of SW and IoT Components: An Open Approach to Bill of Materials

IoT Legal and Policy Issues: The Global Perspective

Life and Death: Security Considerations for Safety-Critical Industries

Securing the Things with Internet: Law and Technical Issues for IoT