How C-SCRM could fill the gaps on supply chain security
Matt Rose explains how the new CISA office could make a big difference — and even lead to a new discipline dedicated to software supply chain security.
Matt Rose explains how the new CISA office could make a big difference — and even lead to a new discipline dedicated to software supply chain security.
CISA's C-SCRM office turns a page on a busy 2022 for federal supply chain directives and guidance. Ericka Chickowski asks top experts if it will move the needle.
Supply chain risk management guidance is incoming, like it or not. Richi Jennings rounds up initial reactions in Secure Software Blogwatch.
The U.S. federal government has been busy crafting policy around software security, which includes mandates for government vendors. Carolynn van Arsdale rounds up the major ones your team should pay attention to.