Vigilant Ops Announces Partnership with BeanStock Ventures

Author: vigilantops

The Minimum Elements for a Software Bill of Materials (SBOM)

Written by vigilantops on . Posted in Blog, In the News, News & Events.

Yesterday, the United States Department of Commerce released The Minimum Elements for a Software Bill of Materials (SBOM), in accordance with President Biden Executive Order 14028 on Improving the Nation’s Cybersecurity. For those who have been following the National Telecommunications and Information Administration (NTIA) SBOM work, you won’t find any surprises in the release. The document thoroughly describes the SBOM, provides motivation for the SBOM as a standard security document, and makes...

Continue reading

NIST Workshop on Supply Chain Security

Written by vigilantops on . Posted in Blog, In the News, News & Events.

The National Institute of Standards and Technology (NIST) hosted a virtual workshop on June 2 and 3, 2021 to fulfill the Executive Order on Improving the Nation’s Cybersecurity, which we previewed in a recent post. The order was signed into law by President Biden on May 12, 2021, and includes direction to the Secretary of Commerce for consultation with various stakeholders including representatives of the private and public sectors, as well as academia.  The goal of this consultation is...

Continue reading

Biden Signs Cybersecurity Executive Order

Written by vigilantops on . Posted in Blog, In the News, News & Events. 2 Comments

On May 12, 2021 President Biden signed the Executive Order on Improving the Nation’s Cybersecurity, which we previewed in a recent post, into law. The fifteen-page document includes various cybersecurity enhancement recommendations such as the Software Bill of Materials (SBOM) and review and revision of governmental procedures, such as the Federal Acquisition Regulation (FAR), all with associated timelines for completion.  The document is not a straightforward read, and the execution timelines...

Continue reading

How To Prepare for the Cybersecurity Executive Order

Written by vigilantops on . Posted in Blog, In the News, News & Events.

On May 12, 2021 President Biden signed the Executive Order on Improving the Nation’s Cybersecurity into law. The fifteen-page document requires sweeping updates and overhauls of various cybersecurity processes and procedures, complete with deadlines for compliance.. Overview In spite of being only fifteen pages in length, the executive order is detailed and complex. It’s quite easy to become overwhelmed by the dependencies between requirements and deadlines for completion. In this document,...

Continue reading

Why 2021 is Shaping Up to be the Year of the SBOM

Written by vigilantops on . Posted in Blog, In the News, News & Events.

The software bill of materials (SBOM) is on its way to being recognized as a key security document and the primary enabler of software transparency across all industries. In healthcare, FDA (US Food and Drug Administration) included the SBOM in the first draft of their Premarket Guidance in 2018, but they referred to it as a CBOM (Cybersecurity Bill of Materials). Today, SBOM, which is a detailed list of software components found in a product or system, has become the more accepted terminology. As...

Continue reading

White House Considers Software Bill of Materials (SBOM) Critical

Written by vigilantops on . Posted in Blog, In the News, News & Events.

The recent SolarWinds attack report, which we summarized in a recent post, hinted at possible executive action as a response to the massive assault. That possibility has been realized, and a Biden administration executive order, requiring enhanced cybersecurity measures including the Software Bill of Materials (SBOM), is expected any day now.  A National Security Council spokeswoman was recently quoted as saying that the SolarWinds attack showed that the “federal government needs to be able...

Continue reading