Courses
Software Inventory and SBOM Course
As organizations rely more on third-party components, cybersecurity professionals must understand Software Bill of Materials (SBOM) to effectively mitigate vulnerabilities and ensure compliance. This course explores key concepts related to SBOM, including structure, standards and practical applications.
DELIVERY METHOD: ON-DEMAND | TIME: 2 HOURS | CPE CREDITS: 2 | FOCUS AREA: SOFTWARE SECURITY | PROFICIENCY LEVEL: FOUNDATIONAL | LANGUAGE: ENGLISH | KNOWLEDGE AREA: STRATEGY
A stable internet connection is required. To record your completion of the online learning experience, please ensure you are connected to the internet at all times.
Refunds are not provided for ISC2 learning experiences.
Software Bill of Materials (SBOM) is transforming the ways organizations address software security in an increasingly complex supply chain ecosystem. As businesses rely more on third-party components, cybersecurity professionals must grasp SBOMs to effectively mitigate vulnerabilities and ensure compliance.
Learn key concepts related to SBOM, including structure, standards and practical applications. This course addresses effective vulnerability management, the integration of Vulnerability Exploitability eXchange (VEX) with SBOMs and the implementation of the Supply-Chain Levels for Software Artifacts (SLSA) framework.
Learning Experience:
This course is designed for cybersecurity professionals looking to enhance their understanding of Software Bill of Materials (SBOM) and its critical role in managing software security within the supply chain.
Learners have 60 days from the date of purchase to complete the entire course. Those who successfully complete this course will receive a digital Validation of Completion and earn continuing professional education (CPE) credits. We recommend that you download and retain the Validation of Completion for your personal records.
To receive a Validation of Completion and earn CPE credits, learners must:| CPE Credits | Group A | 2 |
| Field of Study | Software Security | |
| Level | Foundational | |
| Prerequisites | No specific prerequisite knowledge is required, familiarity with software development practices, security concepts and third-party component management is beneficial. | |
| Access | Online | This is a digital product. The content will be available up to 60 days after purchase date. |
For more information, please refer to the ISC2 Certification Maintenance Handbook for additional CPE requirement details.
CPE credits earned from this learning experience will automatically be reported for ISC2 credentials on the first day of every month. Please allow up to 10 business days for processing.
CPE credits earned for this learning experience may also be eligible for continuing professional education credits for non-ISC2 certifications. Please visit the continuing education requirements established by the credentialing organization for eligibility.
For questions related to ISC2 CPE credits or the CPE portal not covered in the handbook, please contact us via our online form.
To purchase this course for someone or inquire about team discounts, please contact your regional office:
| Americas +1.866.331.4722 teamtraining@isc2.org |
EMEA +44.203.960.7800 teamtraining@isc2.org |
Asia-Pacific +852.5803.5662 teamtraining@isc2.org |
© Copyright 1996-2025. ISC2, Inc. All Rights Reserved.
All contents of this site constitute the property of ISC2, Inc. and may not be copied, reproduced or distributed without prior written permission. ISC2, CISSP, SSCP, CCSP, CGRC, CSSLP, HCISPP, ISSAP, ISSEP, ISSMP, CC, and CBK are registered marks of ISC2, Inc.
