all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Less talk, more action: High hopes for CISA’s C-SCRM software supply chain security office

Add to bookmarks
Feb. 15, 2023, 3:44 p.m. | Ericka Chickowski

Security Boulevard securityboulevard.com




The US Cybersecurity and Infrastructure Security Agency (CISA) is making moves in 2023 to put all of its recent policy and guidance work around software supply chain security into action. Earlier this month, the agency announced a risk management office that is meant to help operationalize a lot of the new and upcoming guidance from CISA and other federal agencies on cyber supply chain risk management (C-SCRM).


The post Less talk, more action: High hopes for CISA’s C-SCRM software supply …

action agency cisa c-scrm cyber cybersecurity federal federal agencies guidance high infrastructure infrastructure security making management office policy risk risk management scrm secure software development framework security software software supply chain software supply chain security supply supply chain supply chain risk supply chain risk management supply chain security upcoming work

Visit resource

More from securityboulevard.com / Security Boulevard

The ultimate cyber spring-cleaning checklist 3 hours ago | securityboulevard.com
can checklist cleaning cyber +14
What is Network Pen Testing? 10 hours ago | securityboulevard.com
assessment attack cyber cyber security +27
RSAC 2024 Innovation Sandbox | The Future Frontline: Harmonic Security’s Data Protection in the AI … 12 hours ago | securityboulevard.com
benchmark blog conference cybersecurity +22
How to Migrate from FedRAMP Rev 4 to FedRAMP Rev 5 13 hours ago | securityboulevard.com
can development evolution fedramp +9
NodeZero: Testing for Exploitability of Palo Alto Networks CVE-2024-3400 16 hours ago | securityboulevard.com
advisory alto april cve +18
Understanding the Change Healthcare Breach and Its Impact on Security Compliance 16 hours ago | securityboulevard.com
american american hospital association attack blog posts +20
Securing CI/CD Pipelines: The Role of Workload Identity Federation 18 hours ago | securityboulevard.com
aembit automated automation can +16
Quick Guide to the OWASP OSS Risk Top 10 19 hours ago | securityboulevard.com
cves guide mend open source +7
USENIX Security ’23 – LibScan: Towards More Precise Third-Party Library Identification for Android Applications 19 hours ago | securityboulevard.com
access android applications authors +20

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Security Compliance Architect - Experian Health (Can be REMOTE from anywhere in the US)

@ Experian | ., ., United States
View on infosec-jobs.com

IT Security Specialist

@ Ørsted | Kuala Lumpur, MY
View on infosec-jobs.com

Senior, Cyber Security Analyst

@ Peloton | New York City
View on infosec-jobs.com

Cyber Security Engineer | Perimeter | Firewall

@ Garmin Cluj | Cluj-Napoca, Cluj County, Romania
View on infosec-jobs.com

Pentester / Ethical Hacker Web/API - Vast/Freelance

@ Resillion | Brussels, Belgium
View on infosec-jobs.com
View more jobs