Today, the Cybersecurity and Infrastructure Security Agency (CISA) released the new Hardware Bill of Materials (HBOM) Framework for Supply Chain Risk Management product from the Information and Communications Technology (ICT) Supply Chain Risk Management (SCRM) Task Force. […]
Members of the House Committee on Homeland Security sent a letter to Jen Easterly, director of the Cybersecurity and Infrastructure Security Agency (CISA), on May 23 asking about the agency’s progress in defending critical information and communications technology (ICT) supply chains. […]
President Biden took action today to extend a national emergency declared by President Trump in 2019 aimed at preventing U.S. adversaries from exploiting vulnerabilities in the information and communications technology (ICT) services supply chain. […]
The Cybersecurity and Infrastructure Security Agency (CISA) is taking a multi-faceted approach to supply chain security, and chief among them is putting in place strong public-private partnerships to maintain supply chain resilience and maintaining high awareness about the sources of supply chain threats. […]
The Cybersecurity and Infrastructure Security Agency (CISA) is partnering with the Office of the Director of National Intelligence (ODNI) to promote a call to action for organizations to focus on protecting information and communications technology (ICT) supply chains, under the banner “Fortify the Chain.” […]
The Department of Commerce’s Bureau of Industry and Security (BIS) is fielding responses to its request for comment (RFC) on risks confronting the information communication technology (ICT) supply chains. […]
Sens. Shelley Moore Capito, R-W.Va., and John Hickenlooper, D-Colo., introduced legislation that would revamp the National Telecommunications and Information Administration’s (NTIA) Office for Policy Analysis and Development to have a stronger focus on cybersecurity efforts. […]
The Department of Commerce’s (DoC) Bureau of Industry and Security published a request for comments to gain feedback on what should be included in a report on supply chains for critical sectors and subsectors of the information and communications technology (ICT) industrial base. […]
The secretaries of Homeland Security and Commerce will work together on the one-year review of information and communications technology (ICT) industrial base supply chains ordered by President Biden earlier this week. […]
An executive order to be signed by President Biden today will order Federal agencies to conduct year-long reviews of their supply chain and industrial base risks, with the defense industrial base (DIB) and information and communications technology (ICT) industrial base among six key sectors identified in the order. […]
The Cybersecurity and Infrastructure Security Agency (CISA) has extended by six months the term of its Information and Communications Technology (ICT) Supply Chain Task Force, which was set up by the agency two years ago as a venue for government and industry to develop consensus strategies to improve ICT supply chain security. […]
The Cybersecurity and Infrastructure Security Agency (CISA) released the annual report for the Information and Communications Technology (ICT) Supply Chain Risk Management (SCRM) Task Force on Dec. 17 which highlights ongoing efforts of five working groups addressing challenges related to information sharing, threat analysis, qualified bidder and qualified manufacturers lists, vendor assurance, and the COVID-19 pandemic. […]
The Cyberspace Solarium Commission, a congressionally-chartered group charged with delivering recommendations to improve U.S. cybersecurity, today issued its latest in a series of white papers on the subject – this time urging the U.S. to take steps to protect critical information and technology (ICT) supply chains from Chinese and other adversarial nations. […]
The Federal government and critical infrastructure owners and operators spend $500 billion annually on information and communications technology (ICT) from thousands of suppliers – small, medium, and large; national and international. Digital transformation and globalization have brought technology advancements and operational efficiencies to Federal agencies. But the increasingly labyrinthine nature of Federal supply chains impacts the security of Federal systems, data, and missions. […]
The Telecommunication Industry Association (TIA) says that those involved in developing wireless, Internet of Things, 5G, and other compute-rich networks are at security and economic risk and that the solution is global supply chain security standards and programs that are industry driven. […]
The National Institute of Standards and Technology (NIST) is seeking input from stakeholders on an update to NIST Special Publication (SP) 800-161: Supply Chain Risk Management Practices for Federal Information Systems and Organizations. […]
On Sept. 13, the Cybersecurity and Infrastructure Security Agency (CISA) and government and industry members on the Information and Communications Technology (ICT) Supply Chain Risk Management (SCRM) Task Force voted to approve the recommendations of three of the four constituent Working Groups. […]
The U.S. cloud computing economy tripled in size from 2002 to 2017, and added $214 billion to the U.S. gross domestic product in 2017, according to an Internet Association (IA) report released Tuesday. […]
The Department of Homeland Security today released a request for information (RFI) calling on the private sector to provide DHS with information on strategies and tools to augment its cyber supply chain risk management program. […]
The State Department on Friday held the fourth United States-Republic of Korea Information and Communication Technology (ICT) Policy Forum in Seoul, South Korea, which brought together private sector representatives and delegations from the two nations to discuss how the countries can collaborate to advance mutual goals in areas of 5G mobile technology, artificial intelligence, inclusive Internet governance, and data privacy. […]
It’s no secret that Chinese companies are major suppliers to U.S. technology companies that serve the Federal government, and a report issued last month says the Chinese government is leveraging that manufacturing capability to create significant security risks across the U.S. Federal enterprise. […]