About
The days of ignoring regulation are over. We’ll explore the key differences between the U.S. and EU approaches—liability versus consumer protection—and explain why regulations like the Cyber Resilience Act (CRA) and the EU AI Act have a global reach. We'll also cover the significant financial risks of non-compliance and how anticipating customer needs can turn compliance from a burden into a competitive advantage.

Join industry experts Leon Schwartz, Andrew Katz, and Josh Bressers for a critical discussion on the evolving landscape of open source software compliance. We will tackle how to manage compliance for open source components, the role of open source stewards, and how to effectively pass compliance information both horizontally and vertically. You'll learn what tools and foundations, like SPDX profiles, are available to help.

* Understanding the Global Impact: Learn why regulations like the EU's Cyber Resilience Act apply to you, no matter where your business is located.

* Navigating U.S. vs. EU Approaches: Explore the cultural differences in compliance, from U.S. liability to the EU's focus on consumer protection.

* The Open Source Challenge: Discover how to handle compliance for open source components and effectively share critical data.

* Practical First Steps: Get actionable advice on how to begin your company's compliance journey and avoid significant fines.
When
Tuesday, October 28, 2025 · 12:00 p.m. Eastern Time (US & Canada) (GMT -4:00)
Presenters
1758664786-bb88030c3670cb4c
Josh Bressers
VP of Security - Anchore
Josh Bressers is Vice President of Security at Anchore where he guides security feature development for the company’s commercial and open source solutions. He is a co-lead of the OpenSSF SBOM Everywhere project, and is a co-founder of the Global Security Database project at the Cloud Security Alliance.
1758664971-87a39dbcebe8d129
Andrew Katz
CEO, Head of Open Source - Orcro Limited, Bristows LLP
Andrew Katz is a lawyer practising at Bristows LLP in London, where he leads the Open Source Team, and CEO of Orcro Limited, an open source compliance consultancy. Andrew was formerly a software engineer prior to starting his legal career, and he has focussed on open source throughout his legal career. He has practised exclusively in the area of open technologies for over 15 years. In 2018, he founded Orcro Limited, a specialist open source compliance consultancy. His clients range from startups to multinationals, open source foundations, public sector organisations and academia, and he is visiting researcher at Queen Mary College, University of London and the University of Skövde, Sweden.
1758665016-bea38098f2744c8b
Leon Schwartz
Principal - GTC Law Group
Leon is a principal at GTC Law Group, where he has spent over 15 years helping clients ranging from start-ups to Fortune-100 tech companies manage risks associated with the use of open source software, including in the context of transactions. As a former software developer, he understands the need for strategic, practical guidance and solutions that work in the real world of fast-paced, increasingly-complex, and oftentimes AI-derived development.