Less talk, more action: High hopes for CISA’s C-SCRM software supply chain security office

The US Cybersecurity and Infrastructure Security Agency (CISA) is making moves in 2023 to put all of its recent policy and guidance work around software supply chain security into action. Earlier this month, the agency announced a risk management office that is meant to help operationalize a lot of the new and upcoming guidance from CISA and other federal agencies on cyber supply chain risk management (C-SCRM).

The post Less talk, more action: High hopes for CISA’s C-SCRM software supply chain security office appeared first on Security Boulevard.

15 February 2023


>>More