Tag Archives: ICT

NIST to Solicit Input on Potential Parameters, Goals for Supply Chain Security Framework; Jon Boyens Quoted

Supply Chain Security

The National Institute of Standards and Technology (NIST) is working on a supply chain security framework for the information and communications technology industry and plans to issue a request for information to seek input about goals, principles and potential parameters for the new framework.

Read More »

CISA Unveils 2 Resources From ICT Supply Chain Risk Management Task Force

Virtual Private Network

The Cybersecurity and Infrastructure Security Agency (CISA) has announced the publication of two new resources to help mitigate threats facing the information and communications technology supply chain. The ICT SCRM Task Force is a public-private partnership sponsored by CISA’s National Risk Management Center (NRMC) and seeks to improve ICT supply chain resilience and security. 

Read More »

Commerce Department Wants Public Comments on its ICT Supply Chain Risk Report

Supply Chain Risk Report

The Department of Commerce (DOC) has requested comments on its report on the risks in the supply chains for the information and communications technology (ICT) industrial base, with a deadline on Nov. 4. The public's opinion and information will help inform the Biden administration's policy of protecting supply chains to ensure the U.S. economy and national security, according to a Federal Register notice.

Read More »

GAO: Federal Agencies Should Implement ICT Supply Chain Risk Management Practices

Virtual Private Network

The Government Accountability Office (GAO) has called on federal agencies to take action on its recommendations to fully implement the foundational practices for managing supply chain risks associated with information and communication technologies. During that month, the congressional watchdog reported that none of the 23 civilian agencies had fully carried out the foundational ICT SCRM practices. 

Read More »

IG Report Calls for DOD to Align Implementation Plan for Pandemic With Telework Policy

Telework Policy

The Department of Defense’s (DOD) office of inspector general (OIG) has recommended that the assistant secretary of defense for homeland defense and global security update the DOD Implementation Plan for Pandemic Influenza to include revised planning assumptions regarding the use of telework for essential and non-essential employees and align the plan with the Pentagon’s telework policy.

Read More »

ODNI, Intel Senior Leaders on US Supply Chain Security, Semiconductor Manufacturing Needs

Semiconductor

Joyce Corell, an official at the Office of the Director of National Intelligence (ODNI), said the U.S. must execute risk-based supply chain security management strategies following the SolarWinds cyber attacks. Under the Structured Array Hardware for Automatically Realized Applications (SAHARA) partnership, DARPA and Intel will work with academic entities to optimize the semiconductor's use.

Read More »

ICT Supply Chain Task Force Continues Info Sharing, Cybersecurity Studies Under Term Extension

Enterprise-Wide

A task force on ensuring the security of the information and communications technology (ICT) supply chain is continuing its initiatives as part of a six-month extension to the group’s charter. The SCRM task force operates as a public-private partnership that includes industry representatives and subject-matter experts that work to drive the discussion on risks to ICT production.

Read More »

CISA Extends Term of ICT Supply Chain Task Force; Bob Kolasky Quoted

Bob Kolasky

The Cybersecurity and Infrastructure Security Agency (CISA) has extended the term of a supply-chain security task force for an additional six months to continue efforts to protect the information and communications technology sector. Robert Mayer, co-chair of the task force, said the group has worked to engage government and ICT stakeholders to help secure the global supply chain over the past two years.

Read More »

CISA Establishes Cybersecurity Risk Mitigation Venture

Lt. Col. Jody Ogle

The Cybersecurity and Infrastructure Security Agency (CISA) has launched a venture under its National Risk Management Center that will oversee cyber threat mitigation efforts in support of systems critical to economic and national security. NRMC plans to achieve an initial operating capability for the architecture this year. CISA additionally intends to fund national laboratories in support of other software assurance efforts. 

Read More »

CISA Report: ICT Supply Chain Task Force Helped Create Supplier Info Sharing Standards

FISMA Reform Legislation

The Cybersecurity and Infrastructure Security Agency (CISA) has released a report stating the progress of its task force on protecting the Information and Communications Technology supply chain over the past two years. CISA said in the report that the ICT Supply Chain Risk Management Task Force was able to develop reference material for information sharing across the industrial base. 

Read More »