Derek Kruszewski

Derek Kruszewski is a data scientist and mechanical engineer with a passion for automating control systems using AI, particularly at oil and gas facilities. Derek leads the vulnerability management innovations at aDolus and (with his extensive yoga background) can fix your back if it hurts.
Derek Kruszewski
S4x23 SBOM Challenge — Part 3: VEX Document Ingestion
7 min read
#S4 Vulnerability Tracking SBOM VEX
S4x23 SBOM Challenge — Part 3: VEX Document Ingestion
By Derek Kruszewski on March 16, 2023

Three weeks ago I reported on the first part of the S4x23 SBOM Challenge run by Idaho National Laboratory (INL), which focused on SBOM Creation. Last week I reported on the second part:...

Continue Reading
S4x23 SBOM Challenge — Part 2: SBOM Ingestion
7 min read
#S4 Vulnerability Tracking SBOM VEX
S4x23 SBOM Challenge — Part 2: SBOM Ingestion
By Derek Kruszewski on March 8, 2023

Two weeks ago I reported on the first part of the SBOM Challenge at the S4x23 cybersecurity conference in Miami, Florida. The Day 1 goal was for each team to create an accurate SBOM for...

Continue Reading
S4x23 SBOM Challenge — Part 1
10 min read
#S4 Vulnerability Tracking SBOM VEX
S4x23 SBOM Challenge — Part 1
By Derek Kruszewski on February 24, 2023

The aDolus Team has just returned from participating in the SBOM Challenge at the S4x23 cybersecurity conference in Miami, Florida. This blog is the first of a series reporting on what we...

Continue Reading
A Deeper Dive into VEX Documents
5 min read
#supplychainsecurity Vulnerability Tracking VEX
A Deeper Dive into VEX Documents
By Derek Kruszewski on April 15, 2022

At the end of last summer, I wrote a blog post explaining the merits of Vulnerability Exploitability eXchange (VEX) documents. Almost 8 months later, I stand by the importance of these...

Continue Reading
What is VEX and What Does it Have to Do with SBOMs?
3 min read
SBOM VEX
What is VEX and What Does it Have to Do with SBOMs?
By Derek Kruszewski on August 12, 2021

Recently, we have been fielding many inquiries here at aDolus regarding “VEX.” If you are not familiar with this mysterious abbreviation, you’ve fortunately landed in the right place....

Continue Reading
NTIA Publishes Minimum Components of an SBOM
4 min read
3rd Party Components Supply Chain Management SBOM
NTIA Publishes Minimum Components of an SBOM
By Derek Kruszewski on July 15, 2021

In today’s blog post I’d like to recognize all the hard work done by NTIA (National Telecommunications and Information Administration) and congratulate them on publishing the minimum...

Continue Reading
Loading more posts
No more posts to load
1
    Stay up to date

    Sidebar

    Stay up to date

    Stay up to date