In the News Archives - SBOM Lifecycle Management

How Bayer Streamlined SBOM Compliance and Cybersecurity with Vigilant Ops
Bayer is a global enterprise with core competencies in healthcare and agriculture. Their commitment to innovation and sustainability drives them to develop cutting-edge solutions that address some of the world’s most pressing challenges. As a leader in the life sciences industry, Bayer prioritizes transparency, security, and compliance to maintain trust with stakeholders and meet evolving regulatory ...
Continue Reading »

FDA Issues Premarket Guidance

September 29, 2023

The United States Food and Drug Administration (US FDA) issued the final version of their guidance document titled “Cybersecurity in Medical Devices: Quality System Considerations and Content of Premarket Submissions – Guidance for Industry and Food and Drug Administration Staff” on September 27, 2023 (referred... Continue reading

Prioritizing Cybersecurity in Supply Chain Operations

September 7, 2022

It’s a rare day if you don’t see a headline about a data breach or ransomware crippling a business or the supply chain. Websites are defaced, personal and financial information stolen, and even medical information is at risk for theft and improper sharing. Software once... Continue reading

Using SBOM to Identify Vulnerabilities and Impacted Devices

November 16, 2021

Last week, CISA (the U.S. Cybersecurity and Infrastructure Security Agency) issued an advisory about critical vulnerabilities in embedded software that opens the door to possible security breaches. No breaches have been reported to date, but the potential impact spans multiple industries, including healthcare. This short... Continue reading

U.S. House Passes Supply Chain Security Bill

October 25, 2021

As part of the response to recent hacks, the United States House of Representatives voted on and passed the DHS Software Supply Chain Risk Management Act of 2021 on October 20, 2021, by a vote of 412-2. The Act covers both new and existing contracts... Continue reading

FDA Seeking Additional Legislative Authorities

September 2, 2021

FDA is seeking “legislative authorities” to enable the office to require medical device manufacturers to adhere to strict cybersecurity policies, including the development of a Software Bill of Materials (SBOM). Continue reading

The Minimum Elements for a Software Bill of Materials (SBOM)

July 13, 2021

Yesterday, the United States Department of Commerce released The Minimum Elements for a Software Bill of Materials (SBOM), in accordance with President Biden Executive Order 14028 on Improving the Nation’s Cybersecurity. For those who have been following the National Telecommunications and Information Administration (NTIA) SBOM... Continue reading

NIST Workshop on Supply Chain Security

June 21, 2021

On May 12, 2021 President Biden signed the Executive Order on Improving the Nation’s Cybersecurity, which we previewed in a recent post, into law. The fifteen-page document includes various cybersecurity enhancement recommendations such as the Software Bill of Materials (SBOM) and review and revision of... Continue reading

Biden Signs Cybersecurity Executive Order

May 25, 2021

How To Prepare for the Cybersecurity Executive Order

May 25, 2021

On May 12, 2021 President Biden signed the Executive Order on Improving the Nation’s Cybersecurity into law. In spite of being only fifteen pages in length, the executive order is detailed and complex. It’s quite easy to become overwhelmed by the dependencies between requirements and... Continue reading

Why 2021 is Shaping Up to be the Year of the SBOM

April 26, 2021

The software bill of materials (SBOM) is on its way to being recognized as a key security document and the primary enabler of software transparency across all industries. In healthcare, FDA (US Food and Drug Administration) included the SBOM in the first draft of their... Continue reading

Announcement:

See How Bayer Streamlined SBOM Compliance with Vigilant Ops

How Bayer Streamlined SBOM Compliance and Cybersecurity with Vigilant Ops