Amid a feverish cybersecurity environment, there is a growing chorus for software to be secure by design. In April, the US Cybersecurity and Infrastructure Security Agency (CISA) and the National ...
The Cybersecurity Infrastructure Security Agency is pledging to go "left-of-boom" and surveil artificial intelligence software development practices in a new alert series, which offers lessons to ...
CISA’s high-profile proselytizing of its Secure by Design program will likely end, but some experts think the idea still has momentum in the private sector, while others have become disillusioned ...
In April, the Cybersecurity and Infrastructure Security Agency's Secure by Design initiative celebrated its first birthday. CISA marked the moment with a blog post outlining its achievements over the ...
As I discussed in my previous article, CISA’s secure-by-design principles—which apply to software vendors supplying the U.S. government but should be considered by all software designers—call for ...
From continuous diagnostics and mitigation to Zero Trust to Secure by Design, the federal government’s approach to cybersecurity is constantly evolving as we learn more about the threats.
It’s no surprise that demand for more secure software is rising and these two approaches claim to outline the best way forward. As cybersecurity professionals, we need to know that the software ...
As cyber threats grow increasingly sophisticated, secure software is now an existential business priority. Shockingly, over 70% of organizations struggle with mounting security debt, with almost half ...
A program manager for the Cybersecurity and Infrastructure Security Agency said ongoing threat vigilance is needed post-implementation of the agency’s Secure by Design framework. Incorporating a ...
The Cybersecurity and Infrastructure Security Agency, the FBI, the National Security Agency and cybersecurity authorities of other international allies on Thursday published joint guidance urging ...
Jen Easterly, US Director of the Cybersecurity and Infrastructure Agency (CISA), recently called for universities to include security as a standard element in computer science coursework. This came ...
What does it take to make secure software? The Open Source Security Foundation (OpenSSF) has a few ideas (10 of them, in fact). This week at the OpenSSF Day Japan event in Tokyo, the nonprofit group ...