Federal CISO Grant Schneider: Better info sharing key to more secure supply chain

“Supply chain security threats will receive more direct attention in 2020, culminating with guidance from the newly-created Federal Acquisition Supply Chain Council, according to the federal government’s top cyber official.”

“The council, created in late 2018 under the SECURE Technologies Act, is comprised of various high-level officials from the intelligence community, civilian agencies and the Pentagon, and charged with collecting supply chain threat data from agencies and providing them guidance in addressing such threats.”

“Speaking Tuesday at an event hosted by Nextgov and Defense One, Federal Chief Information Security Officer Grant Schneider previewed what to expect from the council—which he chairs—in the coming year. Chief among them, Schneider said, is providing guidance to federal agencies legally obligated to create supply chain risk management programs.”

“’The law says each agency needs a program and we need to give them guidance,’ Schneider said. ‘We need to figure out what information we need to collect around supply chain risk management and where to have that information shared from.’”

“Schneider added that is it ‘getting harder and harder in the global economy to understand’ where the components in IT systems come from. Agencies must grapple with ‘what’s inside the box, who built it, what was their intent,’ and whether a nation-state actor could exert control over it.” Read the full article here.

Source: Federal CISO: Better Info Sharing Will Lead to More Secure Supply Chain – By Frank Konkel, November 19, 2019. Nextgov.

0
Tags:

This topic contains 0 replies, has 1 voice, and was last updated by  Jackie Gilbert 8 months, 3 weeks ago.

  • Author
    Posts
  • #83227

    Replies viewable by members only

    0

You must be logged in to reply to this topic.

CONTACT US

Questions?. Send us an email and we'll get back to you, asap.

Sending

©2020 G2Xchange all rights reserved | Community and Member Guidelines | Privacy Policy | About G2Xchange FedCiv

Opportunities. Starting Points.

About our Data

The Vault is a listing of expiring contracts, task orders, etc. within a certain set of parameters, to include:

  • Have an initial total estimated contract value of $10 million or above
  • Federal Civilian Only – DHS, Transportation, Justice, Labor, Interior, Commerce, Energy, State, and Treasury Actions
  • NAICS codes include: 511210, 518210, 519130, 519190, 541511,
    541512, 
    541513, 541519, 541611, 541618,
    541690, 541720, 541990
  • Were modified within the last 12 calendar months
  • The data represented is based on information provided by the government

Who has access? Please note that ALL G2Xchange FedCiv Members will receive access to all basic and much of the advanced data. G2Xchange FedCiv Corporate Members will receive access to ALL Vault content (basic and advanced).

Feedback/Suggestions? Contact us at Vault@G2Xchange.com and let us know what you think. 

G2Xchange FedCiv

Log in with your credentials for G2Xchange FedCiv

Forgot your details?