BEGIN:VCALENDAR
VERSION:2.0
X-WR-CALNAME:devsecopsdays2026
X-WR-CALDESC:Event Calendar
METHOD:PUBLISH
CALSCALE:GREGORIAN
PRODID:-//Sched.com DevSecOps Days Washington, D.C. 2026//EN
X-WR-TIMEZONE:UTC
BEGIN:VEVENT
DTSTAMP:20260706T123653Z
DTSTART:20260825T123000Z
DTEND:20260825T130000Z
SUMMARY:Networking Breakfast
DESCRIPTION:Join us for breakfast and start networking with your fellow attendees!
CATEGORIES:REFRESHMENTS
LOCATION:Cooperative Plaza Conference Center\, 4301 Wilson Boulevard\, Arlington\, VA 22203
SEQUENCE:0
UID:2c06f42c062ddfdf90dde724d51fdfb4
URL:http://devsecopsdays2026.sched.com/event/2c06f42c062ddfdf90dde724d51fdfb4
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20260706T123653Z
DTSTART:20260825T130000Z
DTEND:20260825T131500Z
SUMMARY:Welcome
DESCRIPTION:Welcome to DevSecOps Days Washington\, D.C. 2024!
CATEGORIES:WELCOME
LOCATION:Cooperative Plaza Conference Center\, 4301 Wilson Boulevard\, Arlington\, VA 22203
SEQUENCE:0
UID:bf1826b17bfcc59b2a0094f2e526ba0b
URL:http://devsecopsdays2026.sched.com/event/bf1826b17bfcc59b2a0094f2e526ba0b
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20260706T123653Z
DTSTART:20260825T140000Z
DTEND:20260825T143000Z
SUMMARY:The DevSecOps and SCRM Capability in your Zero Trust Architecture
DESCRIPTION:Zero Trust is the de-facto standard for modern cybersecurity that helps organizations secure the ‘hybrid of everything’ technical estate spanning IT\, OT\, IoT\, cloud\, Artificial Intelligence (AI)\, data\, and more. Come and learn the “what” and “why” of Zero Trust\, a quick overview of capabilities\, and particularly a holistic view of the SCRM/DevSecOps Capability in the upcoming Zero Trust Reference Model Standard. Numerous SCRM related breaches and the complexities of the diversity of platforms and dependencies make this a very complex and critical topic to maintain an organization’s security posture. Nikhil is a practitioner and thought leader who has taken multiple organizations on this journey\, co-chairs the Zero Trust Working Group\, and is co-author of the Zero Trust Playbook series. This presentation is recommended for leaders and practitioners to understand this rapidly evolving space and its implications.
CATEGORIES:PRESENTATION
LOCATION:Cooperative Plaza Conference Center\, 4301 Wilson Boulevard\, Arlington\, VA 22203
SEQUENCE:0
UID:0ca996ac7205972681b2acd14406cdbd
URL:http://devsecopsdays2026.sched.com/event/0ca996ac7205972681b2acd14406cdbd
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20260706T123653Z
DTSTART:20260825T143000Z
DTEND:20260825T150000Z
SUMMARY:Mid-morning Break
DESCRIPTION:Get a refresher on your coffee and rejoin the session!
CATEGORIES:REFRESHMENTS
LOCATION:Cooperative Plaza Conference Center\, 4301 Wilson Boulevard\, Arlington\, VA 22203
SEQUENCE:0
UID:c0b15cc2a4bb32d7e2c04166aa83ac30
URL:http://devsecopsdays2026.sched.com/event/c0b15cc2a4bb32d7e2c04166aa83ac30
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20260706T123653Z
DTSTART:20260825T150000Z
DTEND:20260825T153000Z
SUMMARY:Establishing the First Open Source Program Office (OSPO) at a United States Federal Agency
DESCRIPTION:Open Source Program Offices (OSPOs) are being increasingly adopted as approach to establishing and cultivating a culture of contribution at private and public sector organizations. The Digital Service at CMS.gov will share the programs\, policies\, and projects they’re building to identify and mitigate continuity and security risks in the software supply chain across the Federal Ecosystem. For more information visit: https://go.cms.gov/ospo
CATEGORIES:PRESENTATION
LOCATION:Cooperative Plaza Conference Center\, 4301 Wilson Boulevard\, Arlington\, VA 22203
SEQUENCE:0
UID:5d571a24b399ef921be312f48e7ccbbd
URL:http://devsecopsdays2026.sched.com/event/5d571a24b399ef921be312f48e7ccbbd
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20260706T123653Z
DTSTART:20260825T153000Z
DTEND:20260825T160000Z
SUMMARY:How SBOMs Change Software Supply Chain Management
DESCRIPTION:Sonatype's VP of Product Innovation Dr. Stephen Magill will discuss achieving regulatory compliance and security through effective SBOM (Software Bill of Materials) management. Learn which industry segments now require SBOM production and how to maintain compliance with relevant regulations. Discover best practices for retaining SBOMs throughout the software lifecycle\, how to monitor them for vulnerabilities\, and the importance of applying these same standards to third-party SBOMs. This talk goes beyond SBOM production to answer the critical question "I have an SBOM\, now what?"
CATEGORIES:PRESENTATION
LOCATION:Cooperative Plaza Conference Center\, 4301 Wilson Boulevard\, Arlington\, VA 22203
SEQUENCE:0
UID:b5f8c3e6361fd5810e6c9748cfb8aecc
URL:http://devsecopsdays2026.sched.com/event/b5f8c3e6361fd5810e6c9748cfb8aecc
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20260706T123653Z
DTSTART:20260825T160000Z
DTEND:20260825T170000Z
SUMMARY:Lunch Break
DESCRIPTION:Lunch for all attendees
CATEGORIES:REFRESHMENTS
LOCATION:Cooperative Plaza Conference Center\, 4301 Wilson Boulevard\, Arlington\, VA 22203
SEQUENCE:0
UID:44ccd9f3fadbceae8d6b94c16dc0f264
URL:http://devsecopsdays2026.sched.com/event/44ccd9f3fadbceae8d6b94c16dc0f264
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20260706T123653Z
DTSTART:20260825T163000Z
DTEND:20260825T170000Z
SUMMARY:Sponsored Lunch Presentation-Balancing Speed and Security: Navigating Software Development in a Zero Trust World
DESCRIPTION:In today's rapidly evolving digital landscape\, organizations face the dual challenge of accelerating software development while maintaining robust security measures. This presentation explores the intricacies of managing software development and security risks within a Zero Trust Software Access (ZTSA) framework.\nWe'll delve into:\nThe shifting paradigm of software security and the emergence of ZTSA reducing Software Attack Surface Management (SASM)Key challenges in balancing development speed with security requirementsEssential tools and strategies for effective risk managementBest practices for implementing ZTSA without compromising development velocityReal-world case studies demonstrating successful ZTSA integrationBy the end of this talk\, attendees will gain actionable insights on how to leverage ZTSA principles to enhance security posture while maintaining agile development practices. Learn how to stay ahead of potential threats without sacrificing the pace of innovation in your software development lifecycle.
CATEGORIES:SPONSOR PRESENTATION
LOCATION:Cooperative Plaza Conference Center\, 4301 Wilson Boulevard\, Arlington\, VA 22203
SEQUENCE:0
UID:eabd0e0b7ed6942b1863c68c2de02c92
URL:http://devsecopsdays2026.sched.com/event/eabd0e0b7ed6942b1863c68c2de02c92
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20260706T123653Z
DTSTART:20260825T170000Z
DTEND:20260825T174500Z
SUMMARY:Invited Speaker: Demystifying AI Risk: An Actionable Framework Aligning Business Needs to Risks and Mitigations
DESCRIPTION:While most business leaders and data teams are excited about AI\, leaders of governance / risk functions (e.g.: security\, privacy\, legal\, ethics\, etc.) are concerned about the unintended consequences (risks!) of AI. This lack of alignment is among the main reasons for the slow adoption of AI in large organizations.\nTo address this chasm between AI supporters and detractors\, this talk will walk through an operationalizable framework to confidently manage AI risks:\n• What components make up AI?\n• How do the subsystems of AI work together as an AI system?\n• What are the risks of using AI?\n• What threats can cause each risk to be realized?\n• Which controls can mitigate each risk? Which AI component do they need to be applied to?
CATEGORIES:INVITED SPEAKER
LOCATION:Cooperative Plaza Conference Center\, 4301 Wilson Boulevard\, Arlington\, VA 22203
SEQUENCE:0
UID:4d3311f9897b8a41889b1f528a4b7c59
URL:http://devsecopsdays2026.sched.com/event/4d3311f9897b8a41889b1f528a4b7c59
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20260706T123653Z
DTSTART:20260825T174500Z
DTEND:20260825T181500Z
SUMMARY:Don't Let SBOMs become Yet Another Compliance Activity
DESCRIPTION:Software Bills of Materials\, or SBOMs\, are a hot topic when it comes to our so-called software supply chains. The promise of SBOMs is huge: know what you're running across all of your infrastructure and assess your exposure to a vulnerability in seconds. But without careful work by the community\, we risk SBOMs become just another compliance gate that gives a false sense of security without commensurate value.
CATEGORIES:PRESENTATION
LOCATION:Cooperative Plaza Conference Center\, 4301 Wilson Boulevard\, Arlington\, VA 22203
SEQUENCE:0
UID:499b3c93bbcd056a515d188105a3b4f7
URL:http://devsecopsdays2026.sched.com/event/499b3c93bbcd056a515d188105a3b4f7
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20260706T123653Z
DTSTART:20260825T181500Z
DTEND:20260825T183000Z
SUMMARY:Mid-afternoon Break
DESCRIPTION:Take a short break and get ready for the last few sessions
CATEGORIES:REFRESHMENTS
LOCATION:Cooperative Plaza Conference Center\, 4301 Wilson Boulevard\, Arlington\, VA 22203
SEQUENCE:0
UID:15e2b8955a4deddaf0de9b95a1672b6c
URL:http://devsecopsdays2026.sched.com/event/15e2b8955a4deddaf0de9b95a1672b6c
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20260706T123653Z
DTSTART:20260825T183000Z
DTEND:20260825T190000Z
SUMMARY:Right-Sized DevSecOps For Open Source Projects
DESCRIPTION:It’s no secret that running a DevSecOps pipeline typically requires significant resource investment\, both time and money. This is especially problematic for open source projects and projects that simply do not have deep pockets. The good news is that DevSecOps doesn’t have to cost a lot! During this talk\, we will demonstrate how to bootstrap a project with a full DSO pipeline\, using only containers and free/open source tools. We will also demonstrate the excellent properties our approach has for security\, scalability\, and reproducibility across environments as the project grows in size.
CATEGORIES:PRESENTATION
LOCATION:Cooperative Plaza Conference Center\, 4301 Wilson Boulevard\, Arlington\, VA 22203
SEQUENCE:0
UID:b5cdfc5733e615fbe20b067a21a5f96a
URL:http://devsecopsdays2026.sched.com/event/b5cdfc5733e615fbe20b067a21a5f96a
END:VEVENT
BEGIN:VEVENT
DTSTAMP:20260706T123653Z
DTSTART:20260825T190000Z
DTEND:20260825T191500Z
SUMMARY:Wrap Up and Adjourn
DESCRIPTION:Wrap-up of the day's sessions
CATEGORIES:WRAP UP
LOCATION:Cooperative Plaza Conference Center\, 4301 Wilson Boulevard\, Arlington\, VA 22203
SEQUENCE:0
UID:8713e98c9096cd494a8547f67b7977fa
URL:http://devsecopsdays2026.sched.com/event/8713e98c9096cd494a8547f67b7977fa
END:VEVENT
END:VCALENDAR
