United States of America: Published Part three of Guidance on Securing Software Supply Chain Recommended Practices for Customers

Compare with different regulatory event:

Description

Published Part three of Guidance on Securing Software Supply Chain Recommended Practices for Customers

On 17 November, the “Guidance for Customers on Securing the Software Supply Chain” was published jointly by the Cybersecurity and Infrastructure Security Agency (CISA), the National Security Agency (NSA), and the Office of the Director of National Intelligence (ODNI). The Guidance addresses vulnerabilities in the software supply chain that pose risks to organisations and includes recommended practices that customers should apply in the acquisition, deployment, and operational stages of a software supply chain in order to mitigate associated risks such as cyberattacks.

Original source

Scope

Policy Area
Data governance
Policy Instrument
Cybersecurity regulation
Regulated Economic Activity
technological consumer goods, software provider: other software
Implementation Level
national
Government Branch
executive
Government Body
other regulatory body

Complete timeline of this policy change

Hide details
2022-09-02
adopted

On 2 September 2022, the United States Cybersecurity and Infrastructure Security Agency (CISA), Nat…

2022-11-17
adopted

On 17 November, the “Guidance for Customers on Securing the Software Supply Chain” was published jo…