United States of America: Office of Management and Budget Security Rules for Federal Government Software Suppliers outlining cybersecurity standards
Progress
Scope
Timeline of events
Entry into force of OMB order requiring Federal agencies to collect in a centralised system cybersecurity attestation from software vendors
On 11 June 2023, the requirement obliging federal agencies to collect in a centralised system cybersecurity attestation letters outlined in the Office of Management and Budget (OMB) Memorandum "Enhancing the Security of the Software Supply Chain th…
SourceIssued OMB Update to Memorandum M-22-18 Enhancing the Security of the Software Supply Chain through Secure Software Development Practices
On 9 June 2023, the Office of Management and Budget (OMB) issued an Update to Memorandum M-22-18 for the heads of executive departments and agencies, enhancing the Security of the Software Supply Chain through Secure Software Development Practices. …
SourceEntry into force of OMB order requiring Federal agencies to issue cybersecurity guidelines for software vendors
On 11 February 2023, the requirement for federal agencies to develop guidelines for software vendors outlined in the Office of Management and Budget (OMB) Memorandum “Enhancing the Security of the Software Supply Chain through Secure Software Develo…
SourceIssued OMB New Security Requirements for Federal Government Software Suppliers
On 14 September 2022, the Office of Management and Budget (OMB) issued new security requirements that all federal agencies have to ensure are met when procuring "critical software" from third parties. The Memorandum requires every federal agency to …
Source