OpenChain Continual Improvement Case Studies

•

0 likes•374 views

This document discusses continual improvement of open source license compliance programs. It suggests that companies can refine their compliance programs after adopting the OpenChain ISO 5230 standard in several steps such as adding a software bill of materials, automation tools, and independent auditing processes. Companies are encouraged to consider their size, organization, and market to determine the best path for evolving their compliance program. Asking questions about current processes and goals can help identify effective next steps.

Software

An exploration of continual improvement around open
source license compliance programs

Our goal of “raising all the boats” in the
supply chain is well underway

We can also support continual improvement around
open source compliance programs

The OpenChain Project can provide case studies to help
guide company evolution in this space

This means a company has adopted the gold standard
in compliance processes management
OpenChain ISO 5230
is the most important step
towards excellence
6

7
Program evolution flows naturally from this.
Way of Improvement Place of the Way
(dōjō)
(kaisen)

Choices depend on company size, organizational
approach, and market sector
There Are Many Paths Of Evolution Possible

There are no universal solutions but there are plenty of
case studies and examples to help your journey

Use OpenChain ISO 5230
Use Software bill of Materials
Use Automation
Have Audit Processes
Use OpenChain ISO 5230
Use Software bill of materials
10
An example of Company X refining a program:
Use OpenChain ISO 5230
Use OpenChain ISO 5230
Use Software bill of Materials
Use Automation
What Works
For Me?

ü OpenChain ISO 5230 processes working fine
Company X refining compliance
program after adoption of
OpenChain ISO 5230 – Starting Point
Expanding The Example Of Company X

ü OpenChain ISO 5230 processes working fine
ü Adds SPDX as a software bill of materials
Company X refining compliance
program after adoption of
OpenChain ISO 5230 – Step #1
Expanding The Example Of Company X

ü OpenChain ISO 5230 processes working fine
ü Adds SPDX as a software bill of materials
ü Adds FOSSology or ORT to check outbound
software
Company X refining compliance
program after adoption of
OpenChain ISO 5230 – Step #2
Expanding The Example Of Company X

ü OpenChain ISO 5230 processes working fine
ü Adds SPDX as a software bill of materials
ü Adds FOSSology or ORT to check outbound
software
ü Adds independent audit process
Company X refining compliance
program after adoption of
OpenChain ISO 5230 – Step #3
Expanding The Example Of Company X

Success is all about exploring your current situation
and understanding where you want to go
Application In The Real World

ü Will a software bill of materials make it
easier to manage the supply chain?
ü Will automation make the compliance
program more effective?
ü Is there a way to audit the efficiency of
the program over time?
Here are some examples
Ask Questions To Find What Is Right For You

ü Do you use a software bill of materials?
ü Do you have automation in your compliance
program?
ü Do you have a way to audit the health of the
program over time?
Here are some examples
Ask Questions To Help Your Suppliers

Context – Requirements – Implementation
Collaboration with your
peers will provide the
solution for your space
18

This talk explored the process of building and deploying the first Linux Foundation ISO standard in fourteen years, highlighting both what has changed since we deployed Linux Standard Base, and why formal standardization is a topic that will increasingly be on your radar. The discussion will be primarily focused on OpenChain, the industry standard for open source compliance, and how collaboration with the Joint Development Foundation allowed a transformation from de facto into formal standard in a timescale that suits open source development. The lessons learned are applicable to any projects building out specifications or code that seek worldwide, sustainable adoption across multiple industries, and the presentation will include an explanation of how Linux Foundation and Joint Development Foundation are ready to support that process today.

Open source code

Intetics

Here are tips to address the main challenges of open source code in product development! 72% of organizations make non-commercial use of open source code and 55% use it for commercial product development, - says The Linux Foundation survey on corporate open source programs. As the product development processes need much more accurate approaches, businesses have to think of the ways to prevent future or fix current flaws in #opensource code. Intetics outlines the key problems you may face while dealing with #opensourcecode. Read more in the blog post. https://intetics.com/blog/open-source-code-in-product-development-best-practices-and-risk-mitigation

Giving Everyone Access To Open Source Best Practices: The OpenChain Curriculum

Shane Coughlan

This talk will explain how the OpenChain Curriculum team assembled and released extensive compliance training material under CC-0 licensing. It will expand on how this material can be either used for generic in-company or cross-company training and how it helps to comply with the OpenChain Specification. A run through of the key material will be given to illustrate how it can support every company in the adoption and customization of best practices to suit their needs. The talk will conclude with a brief overview of how to engage with the OpenChain Curriculum, the broader OpenChain Project, and what can be expected around Open Source supply chain management in the coming year.

Toyota and Strategic Collaboration with the Community

Shane Coughlan

Strategies to Reap the Benefits of Software Patents in an Open Source Softwar...

Black Duck by Synopsys

Samsung & The Path to Open Source Leadership (OBC)

Samsung Open Source Group

What in the World is Going on at The Linux Foundation?

Black Duck by Synopsys

The Linux Foundation has over 500 corporate members involved in over 70 member-sponsored projects. In 2016, the Linux Foundation convened over 20,000 people from 85 countries and over 4000 companies at 150 events around the world. Over 800,000 students from 215 countries have enrolled in Linux Foundation training programs. Who is driving this growth? Why do companies invest valuable resources in collaborative development? What have we learned along the way?

Why is Open Source Important to Samsung and What Are We Doing About It?

Samsung Open Source Group

Rise of the Open Source Program Office for LinuxCon 2016

Gil Yehuda

Open Source Program Offices collaborate on open source, policy, governance, and github to help developers improve successful outcomes for open source strategy. We describe why OSPOs are emerging, how they work, and what this means to the open source industry. We highlight a Linux Foundation sponsored collaboration called the TODOGroup where program office directors are meeting to coordinate efforts and ideas. The presentation was delivered at LinuxCon and ContainerCon in Tokyo, Japan in July 2016.

OpenChain Reference Tooling Work Group in 2020

Shane Coughlan

OpenChain Reference Tooling Work Group in 2020 The OpenChain Reference Tooling Work Group meets on a bi-weekly schedule via teleconference to discuss one of the most pressing issues around open source compliance: how do we automate as much as possible? The work group has been active since summer 2019 in mapping out how references toolchains can be described and shared, enabling companies new to automation or exploring automation using open source to begin engagement with the field. The core concept behind the work group is to foster a situation where any company wishing to use open source tooling for open source compliance can do so, and making it clear where interoperability resources can be focused in companies operating a hybrid approach of proprietary tools and open source.

SFScon 2020 - Davide Ricci - FOSS management and license compliance must come...

South Tyrol Free Software Conference

Leveraging FOSS is an attractive proposition, yet managing FOSS and licensing obligations is often an after thought. Business risks and negative branding impacts are ignored, or willingly glimpsed upon, when an organization is in startup mode, however in larger companies and organizations, no lines of code should be pushed upstreamed or shipped with product unless, development shouldn’t even begin unless a comprhensive and state of the art FOSS license compliance policy and practice is in place. So do you go about building a new one, when none exists yet. Which standard do you look at? Which best practices do you follow? What processes do you build to make sure that the policy ultimately folllows the busines needs while mitigating risks as opposed to blocking business completely?

Licensing in Composite Open Source Projects

Protecode

Open Source In Enterprises Apache2009 Beijing Jack CaiOpenSourceCamp

6 Resons To Implememnt DevOps In Your Business

Skillmine Technology Consulting

Software development (Dev) and IT operations (Ops) are the roots of the term "DevOps" (Ops). The term refers to a culture change that will enable the continuous delivery of high-quality software and reduce the development cycle. It is primarily distinguished by shared ownership, automated workflow, and quick feedback principles. As a result, all phases of the software development cycle, not just a few, must be understood by the team members.

DevOps and the Case for ROI to ExecutivesIBM UrbanCode Products

What's hot

Open Source at Scania

Shane Coughlan

OpenChain Japan Work Group Meeting #16 - Remote Meeting #3

Shane Coughlan

Bosch: AN UPDATE ON OUR ACTIVITIES IN AUTOMATING OSS COMPLIANCE: A WORKING SH...

Shane Coughlan

OpenChain Automation Case Study - September to December 2021

Shane Coughlan

OpenChain: How to manage OSS licenses for CI/CD development

Shane Coughlan

OpenChain Webinar #10 - Joint Development Foundation - 2020-08-17

Shane Coughlan

Using SW360 for OSS Compliance Management Process - A Toshiba Case Study for ...

Shane Coughlan

Open Source in ISO Building the First LF Standard in Fourteen Years and What ...

Shane Coughlan

Open source code

Intetics

Giving Everyone Access To Open Source Best Practices: The OpenChain Curriculum

Shane Coughlan

Toyota and Strategic Collaboration with the Community

Shane Coughlan

Strategies to Reap the Benefits of Software Patents in an Open Source Softwar...

Black Duck by Synopsys

Samsung & The Path to Open Source Leadership (OBC)

Samsung Open Source Group

What in the World is Going on at The Linux Foundation?

Black Duck by Synopsys

Why is Open Source Important to Samsung and What Are We Doing About It?

Samsung Open Source Group

Rise of the Open Source Program Office for LinuxCon 2016

Gil Yehuda

OpenChain Reference Tooling Work Group in 2020

Shane Coughlan

SFScon 2020 - Davide Ricci - FOSS management and license compliance must come...

South Tyrol Free Software Conference

Licensing in Composite Open Source Projects

Protecode

Open Source In Enterprises Apache2009 Beijing Jack CaiOpenSourceCamp

What's hot (20)

Open Source at Scania

OpenChain Japan Work Group Meeting #16 - Remote Meeting #3

Bosch: AN UPDATE ON OUR ACTIVITIES IN AUTOMATING OSS COMPLIANCE: A WORKING SH...

OpenChain Automation Case Study - September to December 2021

OpenChain: How to manage OSS licenses for CI/CD development

OpenChain Webinar #10 - Joint Development Foundation - 2020-08-17

Using SW360 for OSS Compliance Management Process - A Toshiba Case Study for ...

Open Source in ISO Building the First LF Standard in Fourteen Years and What ...

Open source code

Giving Everyone Access To Open Source Best Practices: The OpenChain Curriculum

Toyota and Strategic Collaboration with the Community

Strategies to Reap the Benefits of Software Patents in an Open Source Softwar...

Samsung & The Path to Open Source Leadership (OBC)

What in the World is Going on at The Linux Foundation?

Why is Open Source Important to Samsung and What Are We Doing About It?

Rise of the Open Source Program Office for LinuxCon 2016

OpenChain Reference Tooling Work Group in 2020

SFScon 2020 - Davide Ricci - FOSS management and license compliance must come...

Licensing in Composite Open Source Projects

Open Source In Enterprises Apache2009 Beijing Jack Cai

Similar to OpenChain Continual Improvement Case Studies

6 Resons To Implememnt DevOps In Your Business

Skillmine Technology Consulting

DevOps and the Case for ROI to ExecutivesIBM UrbanCode Products

Enterprise DevOps- Importance and Key Benefits You Need to Know

Silver Touch Technologies

Many entrepreneurs consider DevOps solutions useful for startups and technology companies. The reason behind this notion is the chief objective of DevOps implementation, which is to help companies build their culture or establish cloud-native roots. However, the reality is completely different! Best practices in DevOps are beneficial for all enterprises irrespective of their sizes. Read the full article - https://www.silvertouch.com/blog/enterprise-devops-importance-and-key-benefits-you-need-to-know/

DevOps: an efficient operating model

2i Testing

Great Open Source Compliance For Everyone - Version 11

Shane Coughlan

A Brief Introduction to OpenChain - May 2020

Shane Coughlan

An introduction to DevOps

Andrea Tino

DevOps Implementation for Applications Solution - Datasheet

Todd Erskine

The Implementation for Applications Solution helps you apply modern DevOps processes and tooling to an existing application. Over the course of the six-week engagement, the Microsoft Consulting Services team will evaluate the current application, migrate it to a Development/Test lab in Microsoft Azure, and use Azure DevOps Projects with Azure DevOps Services to create an automated build and release pipeline, work with your operations teams to drive adoption of Modern DevOps, and deliver up to six workshops to demonstrate the DevOps capabilities implemented during the engagement.

Top 7 Benefits of DevOps for Your Business.docx

Afour tech

DevOps has become increasingly popular among businesses of all sizes, and for good reason. Its market value alone surpassed an amazing $7 billion in 2022 due to this significant growth. This demonstrates that DevOps is not a passing trend and has the ability to become the accepted practices for agile software development within businesses. We'll look at seven important advantages of Devops Consulting for your company in this blog post, including how it may keep you one step ahead of the competition. Whether you run a tiny company or a huge corporation, putting DevOps into practice can help you accomplish your objectives more quickly and effectively. Let's examine the advantages of DevOps for your company now.

Top 7 Benefits of DevOps for Your Business.docx

Afour tech

Your business may release high-quality products more quickly by using a solid DevOps process for your software development projects with the help of a reliable DevOps consulting partner. Therefore don't worry if you want to introduce a successful modern DevOps approach to your company. You can choose DevOps best practices that will enable you to provide value to your clients in the most creative and cost-effective ways possible with the assistance of AFour Technologies. Contact us at contact@afourtech.com to schedule your no-obligation consultation in order to find out more about us and how our effective DevOps Consulting Services may benefit you.

DevOps 1 (1).pptx

piyushkumar613397

A Brief Introduction to OpenChain - May 2020 - Update1

Shane Coughlan

Improving software quality for the future of connected vehicles

Devon Bleibtrey

XebiaLabs & codecentric Webinar: Deploy Higher Quality Applications Faster (G...

XebiaLabs

Accelerate Your Business Growth with DevOps Services.pdf

ShwanSelby

Rapidflow apps agile pg&c solution

MBist

Company products need to comply with various standards, regulations or tracking guidelines to conduct business in any country. Compliance can slow down product launches into the desired markets and even act as a barrier to entry. Rapidflow’s preconfigured Agile PG&C solution allows integrating substance information that is relevant to substance regulation into the Agile Product Lifecycle Management system in record time that makes this information immediately available to engineering, manufacturing, purchasing, quality, sales, and regulatory personnel and thereby ensuring product compliance.

Analyst Keynote: Continuous Delivery: Making DevOps Awesome

CA Technologies

Building a DevOps organization

Zinnov

Devops interview-questions-PDF

Mayank Kumar

DevOps is a one-stop solution for all software engineering. From creating the software to implementing it in real-time, DevOps does all. This creates an infinite demand for excellent DevOps developers in the market. Since the platform is quite fast and effective, it is attracting the attention of many organizations that are looking to develop a software solution for their own business. Thus, here are a few DevOps interview questions that can help you crack an interview.

How Can DevOps Strategy Boost Your Business Productivity?.pdf

InvoZone

Similar to OpenChain Continual Improvement Case Studies (20)

6 Resons To Implememnt DevOps In Your Business

DevOps and the Case for ROI to Executives

Enterprise DevOps- Importance and Key Benefits You Need to Know

DevOps: an efficient operating model

Great Open Source Compliance For Everyone - Version 11

A Brief Introduction to OpenChain - May 2020

An introduction to DevOps

DevOps Implementation for Applications Solution - Datasheet

Top 7 Benefits of DevOps for Your Business.docx

DevOps 1 (1).pptx

A Brief Introduction to OpenChain - May 2020 - Update1

Improving software quality for the future of connected vehicles

XebiaLabs & codecentric Webinar: Deploy Higher Quality Applications Faster (G...

Accelerate Your Business Growth with DevOps Services.pdf

Rapidflow apps agile pg&c solution

Analyst Keynote: Continuous Delivery: Making DevOps Awesome

Building a DevOps organization

Devops interview-questions-PDF

How Can DevOps Strategy Boost Your Business Productivity?.pdf

Recently uploaded

Enterprise Resource Planning System in Telangana

NYGGS Automation Suite

Enterprise Resource Planning System includes various modules that reduce any business's workload. Additionally, it organizes the workflows, which drives towards enhancing productivity. Here are a detailed explanation of the ERP modules. Going through the points will help you understand how the software is changing the work dynamics. To know more details here: https://blogs.nyggs.com/nyggs/enterprise-resource-planning-erp-system-modules/

Utilocate provides Smarter, Better, Faster, Safer Locate Ticket Management

Utilocate

Utilocate offers a comprehensive solution for locate ticket management by automating and streamlining the entire process. By integrating with Geospatial Information Systems (GIS), it provides accurate mapping and visualization of utility locations, enhancing decision-making and reducing the risk of errors. The system's advanced data analytics tools help identify trends, predict potential issues, and optimize resource allocation, making the locate ticket management process smarter and more efficient. Additionally, automated ticket management ensures consistency and reduces human error, while real-time notifications keep all relevant personnel informed and ready to respond promptly. The system's ability to streamline workflows and automate ticket routing significantly reduces the time taken to process each ticket, making the process faster and more efficient. Mobile access allows field technicians to update ticket information on the go, ensuring that the latest information is always available and accelerating the locate process. Overall, Utilocate not only enhances the efficiency and accuracy of locate ticket management but also improves safety by minimizing the risk of utility damage through precise and timely locates.

AI Pilot Review: The World’s First Virtual Assistant Marketing Suite

Google

AI Pilot Review: The World’s First Virtual Assistant Marketing Suite 👉👉 Click Here To Get More Info 👇👇 https://sumonreview.com/ai-pilot-review/ AI Pilot Review: Key Features ✅Deploy AI expert bots in Any Niche With Just A Click ✅With one keyword, generate complete funnels, websites, landing pages, and more. ✅More than 85 AI features are included in the AI pilot. ✅No setup or configuration; use your voice (like Siri) to do whatever you want. ✅You Can Use AI Pilot To Create your version of AI Pilot And Charge People For It… ✅ZERO Manual Work With AI Pilot. Never write, Design, Or Code Again. ✅ZERO Limits On Features Or Usages ✅Use Our AI-powered Traffic To Get Hundreds Of Customers ✅No Complicated Setup: Get Up And Running In 2 Minutes ✅99.99% Up-Time Guaranteed ✅30 Days Money-Back Guarantee ✅ZERO Upfront Cost See My Other Reviews Article: (1) TubeTrivia AI Review: https://sumonreview.com/tubetrivia-ai-review (2) SocioWave Review: https://sumonreview.com/sociowave-review (3) AI Partner & Profit Review: https://sumonreview.com/ai-partner-profit-review (4) AI Ebook Suite Review: https://sumonreview.com/ai-ebook-suite-review

A Sighting of filterA in Typelevel Rite of Passage

Philip Schwarz

Navigating the Metaverse: A Journey into Virtual Evolution"

Donna Lenk

Essentials of Automations: The Art of Triggers and Actions in FME

Safe Software

In this second installment of our Essentials of Automations webinar series, we’ll explore the landscape of triggers and actions, guiding you through the nuances of authoring and adapting workspaces for seamless automations. Gain an understanding of the full spectrum of triggers and actions available in FME, empowering you to enhance your workspaces for efficient automation. We’ll kick things off by showcasing the most commonly used event-based triggers, introducing you to various automation workflows like manual triggers, schedules, directory watchers, and more. Plus, see how these elements play out in real scenarios. Whether you’re tweaking your current setup or building from the ground up, this session will arm you with the tools and insights needed to transform your FME usage into a powerhouse of productivity. Join us to discover effective strategies that simplify complex processes, enhancing your productivity and transforming your data management practices with FME. Let’s turn complexity into clarity and make your workspaces work wonders!

OpenMetadata Community Meeting - 5th June 2024

OpenMetadata

The OpenMetadata Community Meeting was held on June 5th, 2024. In this meeting, we discussed about the data quality capabilities that are integrated with the Incident Manager, providing a complete solution to handle your data observability needs. Watch the end-to-end demo of the data quality features. * How to run your own data quality framework * What is the performance impact of running data quality frameworks * How to run the test cases in your own ETL pipelines * How the Incident Manager is integrated * Get notified with alerts when test cases fail Watch the meeting recording here - https://www.youtube.com/watch?v=UbNOje0kf6E

Custom Healthcare Software for Managing Chronic Conditions and Remote Patient...

Mind IT Systems

GraphSummit Paris - The art of the possible with Graph Technology

Neo4j

Mobile App Development Company In Noida | Drona Infotech

Drona Infotech

GOING AOT WITH GRAALVM FOR SPRING BOOT (SPRING IO)

Alina Yurenko

May Marketo Masterclass, London MUG May 22 2024.pdf

Adele Miller

Quarkus Hidden and Forbidden Extensions

Max Andersen

Orion Context Broker introduction 20240604

Fermin Galan

Nidhi Software Price. Fact , Costs, Tips

vrstrong314

Understanding Nidhi Software Pricing: A Quick Guide 🌟 Choosing the right software is vital for Nidhi companies to streamline operations. Our latest presentation covers Nidhi software pricing, key factors, costs, and negotiation tips. 📊 What You’ll Learn: Key factors influencing Nidhi software price Understanding the true cost beyond the initial price Tips for negotiating the best deal Affordable and customizable pricing options with Vector Nidhi Software 🔗 Learn more at: www.vectornidhisoftware.com/software-for-nidhi-company/ #NidhiSoftwarePrice #NidhiSoftware #VectorNidhi

Game Development with Unity3D (Game Development lecture 3)

abdulrafaychaudhry

Vitthal Shirke Java Microservices Resume.pdf

Vitthal Shirke

Climate Science Flows: Enabling Petabyte-Scale Climate Analysis with the Eart...

Globus

The Earth System Grid Federation (ESGF) is a global network of data servers that archives and distributes the planet’s largest collection of Earth system model output for thousands of climate and environmental scientists worldwide. Many of these petabyte-scale data archives are located in proximity to large high-performance computing (HPC) or cloud computing resources, but the primary workflow for data users consists of transferring data, and applying computations on a different system. As a part of the ESGF 2.0 US project (funded by the United States Department of Energy Office of Science), we developed pre-defined data workflows, which can be run on-demand, capable of applying many data reduction and data analysis to the large ESGF data archives, transferring only the resultant analysis (ex. visualizations, smaller data files). In this talk, we will showcase a few of these workflows, highlighting how Globus Flows can be used for petabyte-scale climate analysis.

Enterprise Software Development with No Code Solutions.pptx

QuickwayInfoSystems3

In the ever-evolving landscape of technology, enterprise software development is undergoing a significant transformation. Traditional coding methods are being challenged by innovative no-code solutions, which promise to streamline and democratize the software development process. This shift is particularly impactful for enterprises, which require robust, scalable, and efficient software to manage their operations. In this article, we will explore the various facets of enterprise software development with no-code solutions, examining their benefits, challenges, and the future potential they hold.

Globus Compute Introduction - GlobusWorld 2024

Globus

Recently uploaded (20)

Enterprise Resource Planning System in Telangana

Utilocate provides Smarter, Better, Faster, Safer Locate Ticket Management

AI Pilot Review: The World’s First Virtual Assistant Marketing Suite

A Sighting of filterA in Typelevel Rite of Passage

Navigating the Metaverse: A Journey into Virtual Evolution"

Essentials of Automations: The Art of Triggers and Actions in FME

OpenMetadata Community Meeting - 5th June 2024

Custom Healthcare Software for Managing Chronic Conditions and Remote Patient...

GraphSummit Paris - The art of the possible with Graph Technology

Mobile App Development Company In Noida | Drona Infotech

GOING AOT WITH GRAALVM FOR SPRING BOOT (SPRING IO)

May Marketo Masterclass, London MUG May 22 2024.pdf

Quarkus Hidden and Forbidden Extensions

Orion Context Broker introduction 20240604

Nidhi Software Price. Fact , Costs, Tips

Game Development with Unity3D (Game Development lecture 3)

Vitthal Shirke Java Microservices Resume.pdf

Climate Science Flows: Enabling Petabyte-Scale Climate Analysis with the Eart...

Enterprise Software Development with No Code Solutions.pptx

Globus Compute Introduction - GlobusWorld 2024

OpenChain Continual Improvement Case Studies

1. An exploration of continual improvement around open source license compliance programs

2. OpenChain ISO 5230 Is Spreading Rapidly

3. Our goal of “raising all the boats” in the supply chain is well underway

4. We can also support continual improvement around open source compliance programs

5. The OpenChain Project can provide case studies to help guide company evolution in this space

6. This means a company has adopted the gold standard in compliance processes management OpenChain ISO 5230 is the most important step towards excellence 6

7. 7 Program evolution flows naturally from this. Way of Improvement Place of the Way (dōjō) (kaisen)

8. Choices depend on company size, organizational approach, and market sector There Are Many Paths Of Evolution Possible

9. There are no universal solutions but there are plenty of case studies and examples to help your journey

10. Use OpenChain ISO 5230 Use Software bill of Materials Use Automation Have Audit Processes Use OpenChain ISO 5230 Use Software bill of materials 10 An example of Company X refining a program: Use OpenChain ISO 5230 Use OpenChain ISO 5230 Use Software bill of Materials Use Automation What Works For Me?

11. ü OpenChain ISO 5230 processes working fine Company X refining compliance program after adoption of OpenChain ISO 5230 – Starting Point Expanding The Example Of Company X

12. ü OpenChain ISO 5230 processes working fine ü Adds SPDX as a software bill of materials Company X refining compliance program after adoption of OpenChain ISO 5230 – Step #1 Expanding The Example Of Company X

13. ü OpenChain ISO 5230 processes working fine ü Adds SPDX as a software bill of materials ü Adds FOSSology or ORT to check outbound software Company X refining compliance program after adoption of OpenChain ISO 5230 – Step #2 Expanding The Example Of Company X

14. ü OpenChain ISO 5230 processes working fine ü Adds SPDX as a software bill of materials ü Adds FOSSology or ORT to check outbound software ü Adds independent audit process Company X refining compliance program after adoption of OpenChain ISO 5230 – Step #3 Expanding The Example Of Company X

15. Success is all about exploring your current situation and understanding where you want to go Application In The Real World

16. ü Will a software bill of materials make it easier to manage the supply chain? ü Will automation make the compliance program more effective? ü Is there a way to audit the efficiency of the program over time? Here are some examples Ask Questions To Find What Is Right For You

17. ü Do you use a software bill of materials? ü Do you have automation in your compliance program? ü Do you have a way to audit the health of the program over time? Here are some examples Ask Questions To Help Your Suppliers

18. Context – Requirements – Implementation Collaboration with your peers will provide the solution for your space 18

OpenChain Continual Improvement Case Studies

Recommended

Recommended

More Related Content

What's hot

What's hot (20)

Similar to OpenChain Continual Improvement Case Studies

Similar to OpenChain Continual Improvement Case Studies (20)

More from Shane Coughlan

More from Shane Coughlan (20)

Recently uploaded

Recently uploaded (20)

OpenChain Continual Improvement Case Studies