InfoSec World 2026
InfoSec World 2026 returns to Orlando, October 11-15, for its latest edition covering GRC, AI security, and cybersecurity leadership. What to expect, and where container security fits into the program.
InfoSec World 2026: what to expect
InfoSec World has run for over three decades, drawing a mix of CISOs, security leaders, and practitioners for sessions spanning governance, risk, and compliance alongside technical deep dives, with pre- and post-conference workshops bookending the main program.
Themes to watch
- Governance, risk, and compliance (GRC), a core track since the event's founding.
- AI security, from securing AI systems to using AI defensively.
- Software supply chain security, an increasingly prominent theme across the agenda.
- Cybersecurity leadership, aimed squarely at the CISO audience.
Where container security fits into the conversation
GRC and supply chain security sessions at events like this one keep circling back to the same practical question: can your organization actually prove what's running in production, or only assume it. A container image with no SBOM and no signed provenance is one of the harder things to defend in front of an auditor.
Echo answers that with full SBOM transparency in SPDX and CycloneDX formats and signed provenance via cosign and sigstore, on top of images that are already CVE-free and FIPS-validated. It's the same documentation model behind Varonis's FedRAMP authorization using Echo.
Building your GRC story around software supply chain?
Get in touch - happy to show you how Echo makes that story easier to tell.
