Zeva and Black Duck's Upcoming Panel on Software Supply Chain Tools and Best Practices

16 views
Skip to first unread message

McWhite, Rebecca A. (Fed)

unread,
Sep 11, 2025, 9:48:16 AMSep 11
to SW.ASSURANCE

Hello SSCA community, sending the below message out on behalf of one of our members for awareness of a supply chain conference event next week. Thanks! -RM

 

 

 

 

Hello SSCA members,

 

It was great seeing many of you today during the SSCA forum.

 

On Behalf of the Zeva and Black Duck teams, we would like to personally invite you and your DevSecOps program colleagues to join us on September 16th at the Carahsoft Technology Conference Center in Reston, VA, as we  introduce best practices and tools within the DevSecOps and Software Development Lifecycle.  

 

Zeva will be joined by our partner, Black Duck, who will highlighting their technology around Software composition Analysis and SBOM generation, and together, we will discuss how we help streamline the software development lifecycle by adding best tools and practices.

 

CodeLocker is engineered to integrate directly into DevSecOps environments, helping organizations validate the integrity and origin of their software components.

 

Please see below highlights about the event topics and we hope you will join us for an insightful morning for such an important topic.  We hope that you and your DevSecOps, Cyber, and Software Supply Chain colleagues may be able to join us for our panel discussion.

Please register below.

 

https://carahevents.carahsoft.com/Event/Details/655420-zeva

 

This panel discussion brings together leading experts to explore the essential tools and strategies for securing the software supply chain. The focus will be on two primary tools: Black Duck’s Software Composition Analysis software (SCA) and Zeva’s CodeLocker, examining their roles across: 

  • Code and commit level signing along with binary  
  • CI/CD pipeline security 
  • Static analysis of source code and software 
  • Runtime analysis and monitoring 
  • Creation and signing of software bills of materials (SBOMs) 
  • Risk Management and Governance around SDLC / SCRM 

Together,  Zeva and Black Duck solutions meet and align with  government mandates, including the Secure Software Development Framework (SSDF), DoD NIST 800-53 Rev 5. Standards and the SWFT initiatives.

 

Agenda: 

8:30- 9:00 Registration and breakfast

9:00-10:15 Panel Discussion with Expert Industry leaders

10:15 to 10:30 Break

10:30 to 11:30 Presentations and Demos

11:30 to 12:00 Networking and light refreshments

 

Thank you in advance for your time and consideration, and hope you will be able to join us, and connect soon,

 

Sam Shihadeh
Director of Growth


Zeva Incorporated

10300 Eaton Place Suite 305 Fairfax, Va. 22030

Office:   1-888-938-2462 (ext. 1) Mobile:  1-301- 518-3705

www.zevainc.com

Certified Woman Owned Small Business (WOSB)

  

ISO 9001, 20000-1, and ISO 27001 Certified company

CMMI  DEV /3 | CMMI SVC /3

 

 

Reply all
Reply to author
Forward
0 new messages