Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

CISA releases Software Acquisition Guide: Supplier Response Web Tool for software procurement security

Security Tool/Service
First reported
Last updated
Happening score
H score 10
1 unique sources, 1 articles

Summary

Hide ▲

CISA released the Software Acquisition Guide: Supplier Response Web Tool, giving procurement teams a no-cost way to assess software assurance and supplier risk across the acquisition lifecycle. The interactive format helps users focus on the most relevant questions and generate exportable summaries for CISOs and CIOs. The release is intended to improve secure-by-design and secure-by-default procurement decisions.

Related Happenings

CISA releases CVE Program Quality Era roadmap

Public Sector Action
First: 10.09.2025 15:00 Last: 10.09.2025 15:00 Sources 1

About this happening: **CISA** released a new roadmap for the **CVE Program**, shifting the global vulnerability-identification system from its **Growth Era** to a **Quality Era**. The plan prioritizes...

Open Happening

CISA, NSA and partners release SBOM cybersecurity guide

Public Sector Action
First: 03.09.2025 15:00 Last: 03.09.2025 15:00 Sources 1

About this happening: **CISA**, **NSA**, and **19 international partners** released a **joint SBOM guide** that advances **software supply chain transparency** and risk reduction. The guidance gives **...

Open Happening

Timeline

  1. 26.08.2025 15:00 1 articles · 9mo ago

    CISA releases Software Acquisition Guide: Supplier Response Web Tool

    Initial Disclosure

    CISA released the no-cost Software Acquisition Guide: Supplier Response Web Tool for IT and industry decision makers, procurement professionals, and software suppliers. The interactive web tool turns the Software Acquisition Guide into a streamlined digital experience that helps users assess software assurance and supplier risk across the software procurement lifecycle, supports secure-by-design and secure-by-default practices, and produces exportable summaries for decision-makers.

    Show sources
    Open in new tab