The Cybersecurity and Infrastructure Security Agency (CISA) late last week issued a practical checklist to help executives “think through” infrastructure protection, supply chain, and cybersecurity issues in light of the COVID-19 coronavirus, and potential effects to workforce and operations. […]

supply chain risk management process automation
supply chain risk management process automation

The National Institute of Standards and Technology (NIST) is seeking input from stakeholders on an update to NIST Special Publication (SP) 800-161: Supply Chain Risk Management Practices for Federal Information Systems and Organizations.






[…]

cybersecurity chip AI

United Kingdom authorities said today they will allow communications service providers to use in their networks a limited amount of equipment made by “high risk vendors,” and impose restrictions on more extensive use of equipment from those firms.






[…]

Software trade group BSA said the rules proposed under the Securing the Information and Communications Technology and Services Supply Chain executive order may give the Secretary of Commerce “unbounded discretion to review commercial ICT transactions, applying highly subjective criteria in an ad hoc and opaque process that lacks meaningful safeguards for companies.”






[…]

supply chain risk management process automation

The Cybersecurity and Infrastructure Security Agency’s (CISA) Information and Communications Technology (ICT) Supply Chain Risk Management (SCRM) Task Force approved a new working group to develop SCRM frameworks and best practices.






[…]

The Government Accountability Office recommended in a recent report that the Defense Department (DoD) take steps to ensure that the U.S. Air Force develops a “comprehensive acquisition strategy” for its Space Command and Control (C2) program that aims to deliver better capability to protect U.S. space assets from attacks and collisions with space debris.






[…]

General Services Administration GSA

The General Services Administration (GSA) today announced the award of its Second Generation Information Technology (2GIT) Blanket Purchase Agreements (BPAs) that have an estimated value of $5.5 billion over five years.






[…]

5G Broadband rural broadband FCC-min

The General Services Administration (GSA) is gathering feedback that it will present to telecom service providers regarding supply chain and other security requirements for 5G wireless services that the Federal government will be acquiring, a GSA official said today at the agency’s 5G Government Symposium event.






[…]

voting, election, election security

The Cybersecurity and Infrastructure Security Agency (CISA) remains highly confident in the agency’s efforts to defend against nation-state cyber threats including those targeting U.S. elections and supply chains, a senior CISA official said today.






[…]

A bipartisan group of members of the House Energy and Commerce Committee introduced a bill today to provide $1 billion in aid to remove prohibited equipment from the networks of small communications providers and prevent the usage of Federal funds for “any company that poses a national security risk to American communications networks.”






[…]

supply chain risk management process automation

The U.S. Department of Homeland Security’s (DHS Cybersecurity and Infrastructure Security Agency (CISA) released the Information and Communications Technology (ICT) Supply Chain Risk Management Task Force’s first interim report, which details the groups’ progress since its formation.






[…]

supply chain risk management process automation
supply chain risk management process automation

The National Nuclear Security Administration (NNSA) is not using its authority to exclude suppliers that pose a threat to its supply chain. While the agency is working on drafting recommendations to improve the usefulness of its authorities, it keeps pushing back when it will actually complete the recommendations, according to an August 8 report from GAO.






[…]

supply chain risk management process automation

Categories