Keysight Introduces SBOM Manager for Cybersecurity Compliance

Regulators worldwide are converging on software transparency as a core element of cybersecurity policy. The EU Cyber Resilience Act, slated for 2026, will require manufacturers of connected devices to maintain up‑to‑date software bills of materials and to disclose exploited vulnerabilities within 24 hours. Similar expectations are emerging in the United States and parts of Asia, turning SBOMs from a best‑practice recommendation into a de‑facto market entry condition. This shift forces product developers to embed traceability into their design processes, creating demand for automated compliance tools.

Keysight’s SBOM Manager addresses that demand by combining deep binary analysis with continuous vulnerability intelligence. The platform parses firmware, binaries and container images—including closed‑source and embedded components—to produce a comprehensive inventory of third‑party and open‑source elements. By correlating this inventory with multiple CVE feeds and applying VEX standards, the tool filters out noise, allowing security teams to focus on actionable threats. Role‑based permissions and version tracking further streamline the audit trail, making it easier for organizations to demonstrate compliance to regulators and customers alike.

For businesses, the practical impact is twofold: faster time‑to‑market and reduced exposure to supply‑chain attacks. Automated SBOM generation eliminates manual cataloguing, cutting operational costs and minimizing human error. Meanwhile, real‑time vulnerability correlation supports proactive remediation, which can lower insurance premiums and protect brand reputation. As global standards continue to tighten, solutions like Keysight’s SBOM Manager are poised to become essential infrastructure for secure‑by‑design development, helping firms navigate an increasingly regulated digital landscape.