Roundtables
The legendary TROOPERS Roundtable sessions
The TROOPERS Roundtable sessions will take place on Friday, June 26th, 2026.
The TROOPERS Roundtables is where you can meet most of the conference speakers and have inspiring discussions on current IT security topics. The Roundtables usually take place between 10:00 am and 02:00 pm. You do not need to register for a specific topic, just book the Roundtables option. Please also note that the Roundtables are included free of charge in the All Inclusive package.
Sessions
Supply Chain Security
How to strengthen Supply Chain Security — Practical Exchange and Roadmap
Join an open, practitioner-focused roundtable for direct exchange on supply chain security. This session offers a concise overview of core concepts, e.g. SBOM, CSAF, and VEX and digs into the processes behind them: how to obtain, process and apply information to improve security across the supply chain.We will examine:
- How SBOM, CSAF and VEX relate and why version-level detail matters.
- The practical value of an SBOM and why it’s increasingly required by law and IT procurement.
- How to create and consume SBOMs? - Methods to identify dependencies in the context of vulnerabilities.
- Approaches to triage: not all vulnerabilities affect every stakeholder equally.
- Techniques to analyze vulnerabilities and identify affected products and product families.
- Sources of vulnerability information and how to map data unambiguously to products and specific software versions.
- Reporting obligations: where and how to disclose vulnerabilities.
- Tools and automation that help manage information volume and complexity.
- Technical, organizational and personnel challenges to achieving end-to-end supply chain security.
- The role of AI in supply chain security.
- How do we protect ourselves from malicious actors / infected dependencies?
- The Cyber Resilience Act (CRA): implications for companies, products and consumers, the CRA roadmap, and concrete deadlines and actions.
- We will show a live demonstration of the whole process, e.g. covering the consumption of SBOMs, vulnerability identification and assessment, creation of VEX documents.
This roundtable is designed for security practitioners, product owners, compliance officers and decision-makers who want actionable guidance and peer discussion. Expect candid conversation, real-world examples and next steps you can take to strengthen resilience across your supply chains.
AI Security
Identity
The identity roundtable gives identity and security practitioners the opportunity to have an off-the-record discussion on the pressing identity security issues of today.
We’ll have open discussion on identity topics around Active Directory and Entra ID, including, but not limited to:
- The state of hybrid identity between AD and Entra, including advancements to move away from AD and what is still holding organizations back.
- Current identity attacks and what’s being seen in the wild.
- Passkeys and phishing-resistant authentication (PRA) - where organizations stand, the blockers seen, and progress towards PRA.
- Identity security gaps in and around SaaS apps - awareness, what defenders are doing about it, and ongoing research.
- What topics resonated from the AD and Entra talks from the sessions this year.
- Agentic identity security (how can you talk identity these days without mentioning AI).
- Open discussion on any identity security topic not listed here but you think is important.
We’ll also have a presentation from Jorge de Almeida Pinto on the topic of break-glass accounts in Windows and Active Directory.