See if you can guess when this was written:
“When the government purchases products or services with inadequate in-built cybersecurity, the risks persist throughout the lifespan of the item purchased. The lasting effect of inadequate cybersecurity in acquired items is part of what makes acquisition reform so important to achieving cybersecurity and resiliency.”
“Purchasing products and services that have appropriate cybersecurity designed and built-in may have a higher up-front cost in some cases, but doing so reduces total cost of ownership …”
It sounds like it could easily have come from President Biden’s May 2021 Executive Order on Improving the Nation’s Cybersecurity. Or perhaps his much more recent National Cybersecurity Strategy released just two months ago. Both documents call for acquisition reform—using the federal government’s purchasing power to force improvements in the security of software products, especially those used in critical infrastructure.
To read this article in full, please click here
