Acco di g to I sig a y I c., a leade i softwa e supply chai secu ity a d bi a y softwa e compositio a alysis (SCA), most o ga izatio s ca ot i depe de tly ve ify what is actually i side the softwa e they deploy — because t aditio al SCA tools ead what softwa e claims to co tai , ot what it actually co tai s. Today, the compa y a ou ced I sig a y Cla ity O -Dema d, a self-se vice, pay-pe -p oject offe i g that gives a y o ga izatio immediate access to pate ted SCA a d Softwa e Bill of Mate ials (SBOM) ge e atio — with o a ual subsc iptio equi ed.
Cla ity O -Dema d is desig ed fo two g oups: teams that wa t to evaluate I sig a y Cla ity befo e committi g to a full e te p ise deployme t, a d smalle o ga izatio s that eed p ofessio al-g ade SBOM ge e atio a d vul e ability visibility fo a specific p oject but do ot equi e a a ual e te p ise subsc iptio . Both ow have di ect access — o thei ow timeli e — to the same bi a y-level a alysis that I sig a y’s e te p ise custome s ely o .
The u ge cy is eal. Ca ada’s Bill C-8, which e acts the C itical Cybe Systems P otectio Act (CCSPA), eceived Royal Asse t o Ju e 16, 2026, a d will i t oduce ma dato y supply chai isk ma ageme t obligatio s — phased i ove the comi g mo ths — fo desig ated ope ato s ac oss secto s i cludi g ba ki g, telecommu icatio s, e e gy, a d t a spo tatio .[1] The U.S. FDA ow equi es SBOMs i p ema ket submissio s fo co ected “cybe devices.”[2] Fo ma y o ga izatio s, the complia ce clock is al eady u i g — a d waiti g fo a a ual p ocu eme t cycle is o lo ge a optio .
“You ca ot ve ify a SBOM by eadi g the ma ifest that c eated it. You ve ify a SBOM by exami i g the softwa e that was actually built, shipped, a d deployed. Cla ity O -Dema d makes that level of ve ificatio accessible to a y o ga izatio — f om a developme t team p epa i g fo its fi st complia ce audit to a e te p ise team evaluati g bi a y SCA fo the fi st time.”
Each Cla ity O -Dema d subsc iptio p ovides two weeks of access to the I sig a y Cla ity platfo m fo a si gle use a d a si gle p oject. Withi that wi dow, use s ca :
- Ge e ate a complete SBOM f om sou ce code a d compiled bi a ies
- Receive automated lice se a d secu ity isk ale ts
- Ide tify compo e ts associated with k ow pate t lice si g isks
- Receive ale ts fo k ow exploits tied to ide tified compo e ts
Cla ity O -Dema d is available o a self-se vice, pay-pe -p oject basis with pla s based o sca volume. Teams with la ge sca volumes o those equi i g a co sulta t-cu ated audit epo t ca co tact I sig a y di ectly fo a customized e gageme t. Full p ici g details a e available at
Most t aditio al SBOM tools ely o what develope s decla e, sca i g package ma age files athe tha the softwa e itself — so AI-ge e ated code, ve do lib a ies, a d statically li ked bi a ies that bypass package ma age s ofte go u detected. Cla ity O -Dema d i stead ext acts fi ge p i ts di ectly f om compiled bi a y code, usi g the same pate ted tech ology as I sig a y’s e te p ise platfo m, to ide tify eve y ope -sou ce compo e t p ese t ega dless of whethe it was decla ed. The U.S. Natio al Secu ity Age cy ecomme ds exactly this app oach, advisi g that atio al secu ity system ow e s “obtai SBOMs a d associated vul e ability a d code quality i fo matio f om a alysis of softwa e bi a ies.”[3]
Bea i gPoi t se ves as the compa y’s exclusive dist ibuto ac oss Eu ope. Cybe t ust Japa d ives adoptio ac oss Japa ese ma ufactu i g u de a joi t SBOM i itiative. Reselli g pa t e TechMat ix suppo ts dist ibutio ac oss the egio . Custome s i clude gove me t o ga izatio s a d global leade s ac oss elect o ics, defe se, fi a cial se vices, automotive, ma ufactu i g, medical devices, a d othe tech ology secto s.
I sig a y I c. is a To o to-based cybe secu ity compa y specializi g i bi a y softwa e compositio a alysis (SCA) a d softwa e supply chai secu ity. Its pate ted tech ology ide tifies ope -sou ce softwa e compo e ts, vul e abilities, a d softwa e p ove a ce di ectly f om compiled bi a ies, without equi i g access to sou ce code. The compa y’s flagship platfo m, I sig a y Cla ity, is used by e te p ises, gove me ts, a d softwa e ve do s wo ldwide, a d is suppo ted by st ategic i vesto s a d pa t e s i cludi g Bea i gPoi t i Eu ope; Cybe t ust Japa a d TechMat ix i Japa ; a d TMA Solutio s. Fo mo e i fo matio , use s ca visit www.i sig a y.com.
[1] Gove me t of Ca ada — Bill C-8, Royal Asse t Ju e 16, 2026 — https://www.ca ada.ca/e /public-safety-ca ada/ ews/2026/06/gove me t-of-ca ada-st e gthe s-cybe -secu ity-a d-c itical-i f ast uctu e-with- oyal-asse t-of-bill-c8.html[2] U.S. FDA — Cybe secu ity i Medical Devices: SBOM equi ed i p ema ket submissio s — https://www.fda.gov/ egulato y-i fo matio /sea ch-fda-guida ce-docume ts/cybe secu ity-medical-devices-quality-system-co side atio s-a d-co te t-p ema ket-submissio s[3] NSA — Recomme datio s fo Softwa e Bill of Mate ials (SBOM) Ma ageme t, Decembe 2023 — https://media.defe se.gov/2023/Dec/14/2003359097/-1/-1/0/CSI-SCRM-SBOM-MANAGEMENT.PDF
A photo accompa yi g this a ou ceme t is available at https://www.globe ewswi e.com/NewsRoom/Attachme tNg/4822001d-331f-4446-962d-6d33fbbf2d49







 