Online / 5 & 6 February 2022


Steve Springett

Photo of Steve Springett

developing secure software.

He practices security at every stage of the development lifecycle by leading sessions on threat modeling, secure architecture and design, static/dynamic/component analysis, offensive research, and defensive programming techniques.

Steve's passionate about helping organizations identify and reduce risk from the use of third-party and open source components. He is an open source advocate and leads the OWASP Dependency-Track project, OWASP Software Component Verification Standard (SCVS), and is the Chair of the OWASP CycloneDX Core Working Group.



Title Day Room Track Start End
Operationalize SBOM with OWASP Dependency-Track Sunday D.dependency Software composition and dependency management 16:40 17:00