The Three Pillars of U.S. Technological Leadership
The United States stands at a pivotal moment in the global technological race, facing an increasingly assertive China that leverages state-backed investments to dominate key industries.
Software supply chain
How to Manage AI Big-Data Risks
Establishing a taxonomy for AI risks would enable researchers, policymakers, and industries to communicate effectively and coordinate their efforts.
Op-eds
The Power of SBOMs: Building Resilience in Our Critical Infrastructure
As a member of the PCAST Working Group on Cyber-Physical Resilience, I was involved in crafting the recent report outlining crucial steps to fortify the intricate systems that underpin our daily lives....
Op-eds
Charting FDA’s Course: SBOM as the North Star in Cybersecurity
Supply chain security has undergone a profound transformation after pivotal events such as the SolarWinds compromise in 2020 and the subsequent Log4j incident. Central to this evolution is the emergence...
Op-eds
Unlocking the Potential: How SBOM Practices Revolutionize Tech Industries
Following the SolarWinds compromise, the focus on the Software Bill of Materials (SBOM) has surged remarkably. In the tech ecosystem, the SBOM offers a comprehensive overview of software components...
Op-eds
Unlock Compliance Excellence: Harness the Power of an SBOM to Conquer Import and Export Controls, Including OFAC Regulations.
Last month I wrote about using a Software Bill of Material (SBOM) as a valuable tool for managing cybersecurity risk. This month I am expanding that conversation from cybersecurity risk to legal trouble....
Op-eds
Four Steps to Mix SBOMs—Softwares’ Recipe—Into Risk Management
Software bills of materials, the ingredient lists for software, are important elements to companies’ cybersecurity strategies, but only if they use SBOMs effectively to manage risk.
Op-eds
‘SBOM’ disclosure rules loom for federal software procurement
The Software Bill of Materials, or SBOM, disclosure requirement is coming for federal agencies and their contractors. Are managers and executives ready? An SBOM is a formal, machine-readable inventory...
Op-eds
Cyber Vulnerabilities in Medical Devices Put Patients at Risk
The Food and Drug Administration (FDA) closed the public comment period earlier this month on draft cybersecurity guidance for new medical devices after receiving more than a thousand comments from patients,...
Policy Briefs
Russian Hackers Continue Targeting the Software Supply Chain
The Russian state-sponsored hacker group responsible for last year’s massive SolarWinds breach has continued targeting managed service providers (MSPs) in an effort to piggyback into other victim networks,...