February TASK: Smart Building Security / Securing the Software Supply Chain
Live and in-person at TMU + Live-Streamed on Discord
Date: Wednesday, February 26
Time: 6:00 PM
In-Person Location: LIB 72 Lecture Theatre, Library Building, TMU, Corner of Nelson Mandela Walk & Gould Street, Toronto
Registration: Not required
Live-Stream: Although TASK is always best in-person, we will steam live again on Discord @ https://discord.gg/aXfY76xgVJ.
Topic: Smart Building Security
Speaker: Amir Hosseinpour
In this talk, we will look at how red teamers test and break into the physical security of smart buildings. We’ll explain the main weak spots, like building automation systems, access controls, and connected devices, and show the tools and tricks used in real attacks. You’ll learn how attackers can sneak in, and what steps you can take to spot and stop these threats when physical and digital security overlap.
Amir Hosseinpour is an offensive security specialist and a penetration tester at White Tuque, focused on identifying and exploiting vulnerabilities in web applications, network infrastructure, and physical security environments. He leverages real world attack simulations to help organizations strengthen their defensive posture and better safeguard both digital and physical assets.
Topic: The Software Supply Chain: Securing An Essential Pillar of Today's Digital Infrastructure
Speaker: Dmitry Raidman
This presentation delves into how the software supply chain has become an integral part of modern digital infrastructure and why securing it is paramount. The talk will explore the critical role that Software Bills of Materials (SBOMs) and Artificial Intelligence Bills of Materials (AIBOMs) play in providing transparency, security, and resilience across software and AI systems.
Attendees will gain insights into five key use cases, including vulnerability management, license compliance, AI fairness, incident response, and supply chain resilience. Additionally, the presentation will highlight current regulations and policies in Canada, the European Union, and the United States, demonstrating the global movement towards SBOM and AIBOM adoption. By the end of the session, participants will understand why SBOMs and AIBOMs are no longer just best practices but essential tools for protecting today's digital infrastructure. This talk will offer actionable insights for IT leaders and cybersecurity professionals on how to strengthen their software supply chains.
Dmitry Raidman is a visionary entrepreneur and cybersecurity innovator who contributed to shaping the future of software supply chain security. Having held critical technology roles at leading companies like FLIR Systems and Sealights, as co-founder and CTO of Cybeats Technologies, he helped Fortune 500 companies to operationalize SBOM (Software Bill of Materials) management by inventing SBOM Studio in 2020. His groundbreaking work extends to AI security, where he co-leads SBOM implementation for AI systems and models and co-founded AISUF.org, the Open Framework for AI Security & Safe Use. A key contributor to the NTIA's SBOM standards since 2018 and an active participant in critical security working groups, Dmitry brings over 25 years of expertise in application security, cloud architecture, and DevSecOps. His commitment to industry advancement extends beyond technology through co-founding the Security Architecture Podcast, where he shares insights on enterprise security solutions and architecture.
We look forward to see you all there!
The TASK Steering Committee