Finite State, a leader in connected device and product security, today announced that Founder and CEO Matt Wyckhouse will lead a panel on “Designing Connected Devices with Security Built In” at 2:35–3:20 p.m. PT, May 19, 2026, at IoT Tech Expo North America. The conference, one of the industry’s largest gatherings focused on IoT, AI, cybersecurity, edge computing, and digital transformation, will be held at the San Jose McEnery Convention Center in San Jose, California, on May 18–19, 2026.
Leaders from Boeing, SmartTech Research, and EVRaid will join Wyckhouse in examining the evolving security risks facing connected devices, industrial systems, and software-driven products as AI adoption and regulatory pressure accelerate across the IoT ecosystem. Key focus areas of the panel include:
- Embedding security: Moving away from reactive, bolted-on security toward integrating protection at the design stage.
- Best practices: Implementing secure boot processes, hardware root of trust, and strong encryption.
- Long-term resilience: Strategies for continuous threat monitoring and ensuring security measures adapt as devices age.
“Connected devices are now part of critical infrastructure, enterprise operations, healthcare, transportation, and consumer life,” said Wyckhouse. “At the same time, attackers are leveraging automation and AI to scale attacks against software supply chains and embedded systems faster than most organizations can respond. Security can no longer be treated as a release-stage checklist. It must be a continuous operational discipline across the entire product lifecycle.”
Attendees will gain new insight into how manufacturers and technology providers can improve visibility into device software, manage vulnerabilities across product lines, and prepare for rapidly expanding global cybersecurity regulations impacting connected products.
Finite State Live Demonstrations
At Booth #47, the Finite State team will run live demonstrations of artifact-backed workflows that turn shipped software into audit-ready evidence:
- Unified product intelligence: Firmware, binaries, source, and supplier inputs connect into a complete, up-to-date system of record grounded in what actually ships.
- Exploitability-based prioritization: Reachability and context surface real exposure, with defensible rationale for what matters and what doesn’t.
- New CVE to impacted products: Vulnerability disclosure moves to impact analysis quickly, with consistent VEX decisions and traceable outputs across builds.
- Design-to-deployment traceability: Architecture, threats, risks, and requirements connect directly to deployed software and stay aligned as systems evolve.
- Continuous compliance outputs: SBOM, VEX, traceability, and audit-ready reports are generated automatically and stay current across releases.
Securing What Ships, at Portfolio Scale
The panel reflects a market reality: for connected-device manufacturers, securing what ships has become a portfolio-scale problem. Vendored components embedded in firmware rarely appear in source manifests, vulnerability volume outpaces manual triage, and the EU Cyber Resilience Act now enforces incident disclosure timelines as short as 24 hours.
The Finite State Product Security OS closes that gap by analyzing shipped firmware directly, prioritizing reachable risks over raw CVE counts, and maintaining one evidence trail per product version. Teams across medical, automotive, industrial, and consumer IoT use it to keep security and compliance current at release cadence. To discuss these capabilities directly, attendees interested in meeting with the Finite State team during the event can book a meeting on the Finite State IoT Tech Expo event page.
About Finite State
Finite State empowers device OEMs to ship securely while enabling engineering teams to move at the speed of AI, immediately transforming product artifacts into audit-ready assurance through a single automated workflow. Leveraging deep binary analysis and AI-native execution, the platform unifies code, compiled components, and firmware in minutes—connecting security design with deployed software. By continuously generating SBOMs, VEX, and signed compliance packages, Finite State enables connected device companies across industries such as medical devices and automotive to meet evolving regulations, including the EU Cyber Resilience Act (CRA), and deliver continuous compliance at speed. Learn more at https://finitestate.io/
View source version on businesswire.com: https://www.businesswire.com/news/home/20260515019435/en/
Media gallery
