Cybersecurity Information Sharing Act (CISA), NIST, Software

Policy Patches: An Update on Software Security Regulation

Wiley Rein LLP on 8/15/2024

So far, 2024 has been another very busy year for U.S. cybersecurity regulation. Among the top priorities has been software security, as we previewed early this year. Companies that sell software to the federal government or...more

DoD Unveils Cybersecurity Strategy for Defense Industrial Base: What You Need to Know

Woods Rogers on 4/15/2024

The United States Department of Defense (“DoD”) recently published its Defense Industrial Base Cybersecurity Strategy 2024. For context, the DIB is comprised of more than 100,000 domestic and foreign companies or...more

What Does CISA’s Secure Software Development Form Mean for Contractors?

Wiley Rein LLP on 4/2/2024

WHAT: The U.S. Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency (CISA) published the final version of its Secure Software Development Attestation Common Form (Common Form) and announced...more

CISA Opens Repository for Submission of Software Security Attestation Forms

Sheppard Mullin Richter & Hampton LLP on 3/28/2024

On March 11, 2024, the Cybersecurity and Infrastructure Security Agency (“CISA”) and the Office of Management and Budget (“OMB”) released the highly-anticipated Secure Software Development Attestation Form (also known as the...more

Update: CISA Seeks Additional Input from Software Providers on Security Attestation Form

Sheppard Mullin Richter & Hampton LLP on 12/7/2023

The Cybersecurity and Infrastructure Security Agency (“CISA”) recently revised its Secure Software Development Attestation Common Form (after receiving over 110 comments on the initial draft), and is seeking additional...more

OMB Extends Timeline for Collection of Software Attestation Forms and Clarifies Scope of Requirement

Wiley Rein LLP on 6/15/2023

On June 9, 2023, the Office of Management and Budget (OMB) issued a guidance memorandum, OMB M-23-16, that extends the timeline for agencies to begin collecting attestations for critical and non-critical software from...more

The US Government is Working Globally to Shift Cyber Duties: New Report Shows Ambitious Goals

Wiley Rein LLP on 4/14/2023

As part of the government’s move to “rebalance” responsibilities in cyber, described in the National Cybersecurity Strategy, the United States government on April 13 released a notable document in partnership with several...more

Seeking HoNIST Opinions – NIST Invites Comments on Major Revision to Cyber Supply Chain Risk Management Practices for Systems and...

Sheppard Mullin Richter & Hampton LLP on 5/27/2021

The National Institute of Standards and Technology (“NIST”) is seeking comments on its draft NIST SP 800-161 Rev. 1, “Cyber Supply Chain Risk Management Practices for Systems and Organizations,” published on April 29, 2021....more

President Biden Announces Sweeping New Cybersecurity Reforms

Pillsbury Winthrop Shaw Pittman LLP on 5/20/2021

The President’s new Executive Order on Improving the Nation’s Cybersecurity includes wide-ranging measures intended to strengthen security standards for the federal government and federal government contractors in response to...more

Cybersecurity Information Sharing Act (CISA) › National Institute of Standards and Technology › Software

"My best business intelligence, in one easy email…"