A new LinkedIn group has been setup, called the #SBOM SIG, that aims to help people avoid the problems described in the DOE video below and succeed in their journey to use SBOM's for software supply chain risk management by exchanging helpful information describing successful SBOM use and implementation.
The #SBOM SIG is a group of SBOM implementers with ground truth implementation experiences using SBOM and multiple years working with SBOM; we are here to help you "do it right" with SBOM implementation to help you get the most benefit and a successful outcome:
https://www.linkedin.com/groups/13274064/
There is considerable misinformation floating around about SBOM implementation across the energy industry; https://youtu.be/pzTtAbOjZ2E
This video is an example of how NOT to use SBOM, if you are intending to get the optimal benefits and succeed with SBOM's in your supply chain risk assessment processes for critical infrastructure. SBOM is like baking a cake - it's easy to do it wrong and fail like the video above shows, but it's also easy to do it right and succeed - follow the SBOM recipe for success to avoid disasters like the one shown in the video above.
Success with SBOM is a choice - everyone can succeed, just follow best practice for best results - learn from the people that have successfully implemented SBOM, the #SBOM SIG.