Currently Empty: ₹0.00
Certified Open Source Software Compliance (FOSS) Manager
Course Overview
Open-Source Software has become a very expensive affair for customers. What was supposed to be ‘free’ is not free anymore.
The risk of commercial and legal exposure of Free & Open-Source software is a matter of concern to all organisations.
This course is not comparable to any other course available today because it has been designed for actual practical applications organizations that use either popular or little-know FOSS platform.
This 6-hour instructor-led course provides a practical and comprehensive introduction to Free and Open Source Software (FOSS) Compliance.
It covers
- The fundamentals of FOSS, including key license types (permissive, copyleft), legal obligations, and license compatibility.
- Participants will learn how to build and manage a FOSS compliance program, including policy development, documentation, and the use of Software Composition Analysis (SCA) tools.
- Explores Software Bills of Materials (SBOMs) their generation, validation, and role in compliance and security.
- Additional topics include managing vulnerabilities, aligning with regulations and standards like ISO/IEC 5230 and Executive Order 14028, and addressing supply chain risks.
- The training concludes with an introduction to advanced areas such as FOSS in AI/ML, DevSecOps, and emerging compliance tools, equipping learners with the knowledge to support robust and secure open-source practices.
Who Should Attend
- Software Asset Managers
- Software Developers & Project Managers
- IT Procurement
- Cyber Security Specialists
Certification
- Certified Open-Source Licensing Expert
Exam Details
- Multiple Choice Questions
- Random 40 Questions
- Sixty Minutes
- 85% Passing Marks
Curriculum
- 7 Sections
- 27 Lessons
- 6 Hours
-
Session 1 (30 minutes):
Introduction to FOSS4-
1.1What is FOSS?
-
1.1Need for FOSS
-
1.1Risks associated with FOSS
-
1.1Popular projects & brief history of FOSS
-
-
Session 2 (45 minutes):
FOSS Licenses: Types & Obligations3-
1.1Key License Categories (Permissive & Copyleft)
-
1.1In-depth discussion on a few licenses
-
1.1Important Obligations
-
-
Session 3 (45 minutes):
FOSS Licenses: Compatibility & Other Types4-
1.1Mixing open source licenses
-
1.1Linking, aggregation, and derivative works
-
1.1Dual and Multi License
-
1.1Source Available License
-
-
Session 4 (1 hour):
FOSS Compliance Management Process4-
1.1Understanding Policy & Process
-
1.1Documentation Requirements (Modification, Attribution, Notices, etc.)
-
1.1Use of Software Composition Analysis (SCA) tools & Shift-left approach
-
1.1Compliance Lifecycle
-
-
Session 5 (1 hour):
Software Bill of Material (SBOMs)4-
1.1What are SBOMs?
-
1.1Types of SBOMs
-
1.1Generating & Validating a SBOM
-
1.1How SBOMs aid in compliance
-
-
Session 6 (1 minutes):
Holistic Compliance Approach5-
1.1How Open Source Program Office helps
-
1.1Security Vulnerabilities (CVEs, CVSS, KEV, EPSS, etc.)
-
1.1Operational risk with Open source
-
1.1Sync with other regulations & Standards
-
1.1Vendor/Supply Chain Risk Management
-
-
Session 7 (1 hour):
SecTitle4-
1.1FOSS in AI/ML
-
1.1DevSecOps
-
1.1Emerging tools & Trends
-
1.1ASPPM
-
Featured Review
The ITAM India course on FOSS license compliance, helmed by Prashant Singh Baghel, is truly exceptional and comprehensive. It covers every aspect of open source compliance with clarity and depth, blending practical examples with expert guidance. I now feel confident managing FOSS obligations and ensuring compliance for my organization.