Discover how to effectively collect and leverage Software Bill of Materials (SBOMs) in this 47-minute presentation from the OWASP Foundation. Learn from a real-world case study where thousands of product SBOMs were successfully collected, generated, and stored through modified policies and processes. Explore practical applications of SBOMs within a corporate product CERT environment, particularly during critical vulnerability events like Log4j and OpenSSL. Gain valuable insights into key learnings, suggestions, and opportunities for improvement in SBOM implementation. This talk addresses common debates about SBOM's value in vulnerability management and provides solutions to overcome collection challenges that many consider too difficult and time-consuming.