How CISA’s secure software development attestation form falls short | allinfosecnews.com

March 18, 2024, 3:17 p.m. | paul.roberts@reversinglabs.com (Paul Roberts)

ReversingLabs Blog blog.reversinglabs.com

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) and the White House’s Office of Management and Budget (OMB) have released their Secure Software Development Attestation Form, a long-anticipated worksheet that asks organizations that sell software and services to the federal government to attest to the security of their wares.

agency appsec & supply chain security attestation budget cisa cybersecurity development federal federal government government house infrastructure infrastructure security management office office of management and budget omb organizations secure software security sell services software software development white house

More from blog.reversinglabs.com / ReversingLabs Blog

NSA's zero-trust maturity for AppSec: What you need to know 2 days, 13 hours ago | blog.reversinglabs.com

agency application appsec appsec & supply chain security +17

Security operations by the numbers: 30 cybersecurity stats that matter 3 days, 16 hours ago | blog.reversinglabs.com

cybersecurity defenses enterprise enterprise it +17

The state of AppSec: Are we getting better — or falling behind? 4 days, 17 hours ago | blog.reversinglabs.com

application application security appsec appsec & supply chain security +7

Why shareable SBOMs are essential for software security 1 week, 3 days ago | blog.reversinglabs.com

appsec & supply chain security bills building collecting +21

Will CISA's Secure by Design pledge be a catalyst for better software security? 1 week, 4 days ago | blog.reversinglabs.com

adoption agency akamai amazon +17

When it comes to threat modeling, not all threats are created equal 2 weeks, 2 days ago | blog.reversinglabs.com

appsec & supply chain security can career fix +4

CISA's new 'vulnrichment' program aims to bolster the NVD 2 weeks, 3 days ago | blog.reversinglabs.com

agency appsec & supply chain security bolster cisa +17

ReversingLabs Search Extension for Splunk Enterprise 2 weeks, 4 days ago | blog.reversinglabs.com

apis application blog command +13

What you missed at RSA Conference 2024: Key trends and takeaways 2 weeks, 4 days ago | blog.reversinglabs.com

america appsec & supply chain security artificial intelligence (ai) center +20

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US

View on infosec-jobs.com

Corporate Intern - Information Security (Year Round)

@ Associated Bank | US WI Remote

View on infosec-jobs.com

Senior Offensive Security Engineer

@ CoStar Group | US-DC Washington, DC

View on infosec-jobs.com