DIGITAL SME ISAC Masterclass: Understanding and Producing SBOMs for SMEs

February 19, 2026

11:00

12:00

About the event

Following the Cyber Resilience Act (CRA) Information Session which took place on 12 November 2025, DIGITAL SME ISAC is hosting a masterclass on the Software Bill of Materials (SBOMs), designed to help SMEs understand and implement SBOMs effectively.

SBOMs are a key requirement under the Cyber Resilience Act (CRA) for digitally connected products, and this session will provide practical guidance on producing, managing, and using them. The masterclass will feature Ioanna Georgiadou, Cybersecurity Officer at ENISA, who will share expert insights on SBOMs, regulatory considerations, and CRA requirements, alongside Philippe Ombredanne, Lead Maintainer at AboutCode, who will demonstrate practical tools and methodologies for creating and managing SBOMs.

This discussion will cover:

The Software Bill of Materials (SBOM) and its consequences for industry stakeholders
Tools and resources for SMEs for adapting and complying with SBOMs
Current challenges and caveats in adopting SBOMs

Agenda

11:00 - 11:05

Welcome and Introduction

Davide Iaccarino, Project Manager, European DIGITAL SME Alliance

11:05 - 11:50

Understanding the Software Bill of Materials: Main Implications & Considerations

Ioanna Georgiadou, Cybersecurity Officer at ENISA
Philippe Ombredanne, Lead Maintainer at AboutCode

11:50 - 12:00

Feedback and Q&A session

Cookie	Duration	Description
_GRECAPTCHA	5 months 27 days	This cookie is set by the Google recaptcha service to identify bots to protect the website against malicious spam attacks.
cookielawinfo-checkbox-advertisement	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Advertisement" category .
cookielawinfo-checkbox-analytics	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Analytics" category .
cookielawinfo-checkbox-functional	1 year	The cookie is set by the GDPR Cookie Consent plugin to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to record the user consent for the cookies in the "Necessary" category .
cookielawinfo-checkbox-others	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to store the user consent for cookies in the category "Others".
cookielawinfo-checkbox-performance	1 year	Set by the GDPR Cookie Consent plugin, this cookie is used to store the user consent for cookies in the category "Performance".

Cookie	Duration	Description
VISITOR_INFO1_LIVE	5 months 27 days	A cookie set by YouTube to measure bandwidth that determines whether the user gets the new or old player interface.
YSC	session	YSC cookie is set by Youtube and is used to track the views of embedded videos on Youtube pages.
yt-remote-connected-devices	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt-remote-device-id	never	YouTube sets this cookie to store the video preferences of the user using embedded YouTube video.
yt.innertube::nextId	never	This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.
yt.innertube::requests	never	This cookie, set by YouTube, registers a unique ID to store data on what videos from YouTube the user has seen.

DIGITAL SME ISAC Masterclass: Understanding and Producing SBOMs for SMEs

About the event

Agenda

Create an account

Log in