Bob Kolasky, an official at the Department of Homeland Security’s Cybersecurity and Infrastructure Security Agency, said the newly created Federal Acquisition Security Council has initiated its efforts to help agencies manage security risks to the supply chain, FCW reported Monday.
FASC “is going to serve as the governance structure to elevate the security within federal acquisition processes,†Kolasky, head of CISA’s National Risk Management Center, said at an FCW briefing held July 16. To support that effort, he said the council aims to establish a data repository designed to help agencies “make smarter procurement decisions†and will offer guidance on the use of exclusion authorities when it comes to extreme security risks.
Kolasky also noted that his office is also advancing the supply chain security assessment as mandated by an executive order signed by President Trump in May. The review is due by mid-August and would inform new industry regulations being developed by the secretary of the Department of Commerce.
“We are looking across the [information and communications technology] supply chain and identifying the most critical nodes,” he added.
