Get Ahead of CISA’s New Software Security Acquisition Requirements

On August 1 2024, the CISA-led ICT Supply Chain Risk Management Task Force published a Software Acquisition Guide. This document outlines key questions that an enterprise buyer of software can ask to better govern security risk of their vendors. Despite being targeted at government agencies, the guide can be leveraged by any organization that is looking to procure software in a safe manner.

The post Get Ahead of CISA’s New Software Security Acquisition Requirements appeared first on Security Boulevard.