Marcus Bailey – Page 14

December 20, 2022

SOFTWARE & SUPPLY CHAIN ASSURANCE MEETINGS

JANUARY 24 & 25, 2023
MITRE McLean Building 1

7525 Colshire Drive

Mclean, VA 22102

The Software and Supply Chain Assurance Forum (SSCA) provides a venue for government, industry, and academic participants from around the world to share their knowledge and expertise regarding software and supply chain risks, effective practices and mitigation strategies, tools and technologies, and any gaps related to the people, processes, or technologies involved. Co-led by the National Institute of Standards and Technology (NIST), the Department of Homeland Security (DHS), the Department of Defense (DoD), and the General Services Administration (GSA).

December 20, 2022

Supply chain integrity and security: what are the risks? (Part I)

Part I of this article explores the concept of Supply Chain Integrity, which is regularly bundled with Supply Chain Security. As opposed to supply chain security, which is focused on protecting those products or materials transiting the supply chain, supply chain integrity focuses on the provenance, authenticity and traceability of those products or materials. Supply Chain Integrity starts with raw materials and ends with the end user.

Read Full Article

December 5, 2022December 6, 2022

DORA and Strategies for Managing Risk in the Extended Supply Chain

On-Demand

Supply chain risk management (SCRM) is a vital enabler of digital operational resilience in financial institutions. With upcoming regulatory compliance requirements under the European Union’s Digital Operational Resilience Act (DORA), they will be required to transform the way they manage risk in their extended supply chains.

December 2, 2022December 6, 2022

Zero-COVID Protests in China May Imperil Global Supply Chains – Interos

Since the onset of the COVID-19 pandemic, China has pursued a strict zero-COVID policy, employing draconian containment measures to limit transmission. This approach has limited fatalities but also severely impacted China’s economy, ensnarled global supply chains and —this past week — has fostered some of China’s most-visible protests and public dissent in years.

Read Full Article

December 1, 2022December 6, 2022

Russian Software Pushwoosh Highlights Need for Vigilance on Foreign Ownership Risks in Supply Chain

This week’s disclosure of a Russian firm masquerading as an American company highlights yet again the potential security concerns hidden within software supply chains.

The company, Pushwoosh, provides coding language and data processing for companies building software applications. Its code allows software developers to track and profile app users to customize the notifications they receive.

While Reuters’ exclusive story noted Pushwoosh’s integration with the Centers for Disease Control and Prevention (CDC), that agency was far from alone. Interos’ own analysis has identified additional industries and countries most at-risk of exposure to Pushwoosh code and potential data breaches.

Read Full Article

November 16, 2022

Speeding Up the Move to Zero Trust

November 30, 2022
2:00 PM Webinar

As civilian and defense agencies work through the nuances of incorporating zero trust strategies, the question becomes: How can this process be sped up?

November 15, 2022November 16, 2022

Beyond Cybersecurity Frameworks

The last couple of years have been filled with what seems like countless high-profile cyber attacks — SolarWinds and Colonial Pipeline immediately come to mind.

Add to that the top six breaches that occurred in the U.S. and other countries in the first six months of this year, and we can see that hacks, scams, breaches and ransomware are the norm, not the exception. Although the U.S. government is doing its part to offer executive guidance and create meaningful security frameworks to combat new and ongoing threats, the onus must fall on the private sector to adopt, manage and revisit their security best practices if we are to get ahead of constantly evolving cyber threats.

Read Full Article

October 18, 2022

When will SBOMs finally benefit the federal government’s software supply chain?

Software bill of materials (SBOMs), an ingredient list for software, are going to finally provide missing foundational information on software consumption so federal agencies can improve their software supply chain security … someday. To be sure, the Commerce Department has nurtured an SBOM-interested community for years and those efforts have benefited many industries, especially medical device companies. A recent executive order singled out the utility of SBOMs.

Read Full Article:

October 18, 2022

Supply Chain Management for Operational Resilience – Where do you start?

Oct 27 2022, 12:00pm EDT

Join Edgile, Interos and ServiceNow to hear how you can leverage ServiceNow Business Continuity Management (BCM) and Vulnerability Risk Management (VRM) coupled with Interos to reinvent Supply Chain management with an AI powered SaaS platform. In this webinar, Edgile will demonstrate how Vulnerability Risk Management (VRM) can be integrated with Interos, using AI to help organizations continually assess their supply chains.

October 4, 2022

Space Foundation Symposium 365 Event: Space Matters

Thursday, October 6 @ 1:00 pm – 2:00 pm

Space Foundation’s second season of Space Matters convenes well-known policy influencers for monthly high-level space policy conversations on emerging topics and trends within the global space economy.