Enhancing Cyber Supply Chain Assurance: Secure Software Acquisition Guide Webinar Series

The Cybersecurity and Infrastructure Security Agency’s (CISA) Information and Communications Technology (ICT) Supply Chain Risk Management (SCRM) Task Force presents its latest product, “Software Acquisition Guide for Government Enterprise Consumers: Software Assurance in the Cyber-Supply Chain Risk Management (C-SCRM) Lifecycle” (Software Acquisition Guide). The Task Force developed the Guide in response to the core challenges of software assurance and cybersecurity transparency in the acquisition process. The Guide provides individuals in software acquisition roles who support government agencies with a single point of guidance for achieving software assurance during software design, development, deployment, and operational use. Join the Task Force as they host a two-part webinar series to discuss how the Guide can help organizations increase supply chain resilience through software assurance. 

Enhancing Cyber Supply Chain Assurance: A 101 Discussion on the Secure Software Acquisition Guide  

October 3, 2024 1:00 pm. – 2:00 p.m. ET 

This webinar will provide an overview of the Software Acquisition Guide. Panelists will cover the Software Acquisition Guide’s purpose, why it was developed, how it relates to other federal guidance, and how it can be utilized by organizations to ensure their software is secure, safe, and reliable. 

Speaker: Mona Harrington, Assistant Director 

Cybersecurity and Infrastructure Security Agency (CISA)  

National Risk Management Center (NRMC) 

Moderator: Joe Jarzombek, Software Assurance Subject Matter Expert, Retired from Department of Homeland Security (DHS) and Synopsys 

Panelists: Lauren Zabierek, Senior Advisor, Cybersecurity Division, CISA 

Kanitra Tyler, Supply Chain Risk Management Service Element Lead, National Aeronautics and Space Administration 

Tim Mackey, Head of Software Supply Chain Risk Management, Black Duck Software  

Enhancing Cyber Supply Chain Assurance: “How-To” Discussion on the Secure Software Acquisition Guide   

November 14, 2024 1:00 p.m. – 2:00 p.m. ET 

This webinar will offer an in-depth examination on how to use the Software Acquisition Guide. Panelists will present step-by-step instructions on how to use both the Guide and the accompanying spreadsheet, featuring practical examples and a live Q&A session. The panelists will also gather insights from suppliers on how they anticipate effectively utilizing the Guide.   

Speaker: Mona Harrington, Assistant Director 

Cybersecurity and Infrastructure Security Agency (CISA)  

National Risk Management Center (NRMC) 

Moderator: Joe Jarzombek, Software Assurance Subject Matter Expert, Retired from DHS and Synopsys 

Panelists: Dick Brooks, Co-Founder and Lead Software Engineer, Business Cyber Guardian 

Jon Amis, Supply Chain Solutions Principal, LMI 

Sridhar Balasubramanian, Principal Product Security Architect, NetApp 

Tim Mackey, Head of Software Supply Chain Risk Management, Black Duck Software