Image: VideoFlow/Shutterstock.com
By: FEDweek StaffOMB has issued a memo to agencies reinforcing security and integrity requirements for their software under a 2021 executive order that among other things requires agencies to comply with Software Supply Chain Security Guidance from the National Institute of Standards and Technology.
Under a 2022 OMB memo, agencies must only use software that is provided by software producers who can attest to complying with government-specified minimum secure software development practices. For those purposes “software” includes firmware, operating systems, applications, and application services such as cloud-based software, as well as products containing software.
The new memo, M-23-16, clarifies policies regarding third-party components, freely obtained and publicly available proprietary software, and federal contractor developed software; provides guidance on the use of plans of action and milestones; extends timelines for agencies to collect attestations from software producers; and more.
Nearly 10,000 Federal Offices Don’t Meet Usage Standards
OPM Plan on Employee Ratings Asking for Abuse, Says Senior House Democrat
OK, FERS and TSP, but What About Social Security Retirement Income?
Conversions to Schedule P/C Pending; Acknowledgement Form Draws Attention
Senate Passes DHS Funding Deal, but Stalls in House; Trump Signs Order to Pay TSA Personnel
See also,
Calculating Service Credit for Sick Leave At Retirement
FERS Supplement vs The 10% Pension Bonus
How Your FERS, Social Security and TSP Payments Get Taxed
