Joint government SBOM guidance Released new guidance on the advantages of widespread SBOM adoption for Published on **2025-09-04** for software ecosystem stakeholders
Public Sector Action
Summary
Hide ▲
Show ▼
Government agencies in the US and 14 allied countries released new SBOM guidance to improve software supply-chain transparency and speed vulnerability management across critical systems. The guidance promotes SBOM generation, analysis, and sharing as a way to reduce risk and costs. It also emphasizes machine-processable records and downstream sharing to help software producers and operators respond faster to new issues.
Related Happenings
US National Security Agency (NSA) / Zero Trust Implementation Guidelines (ZIGs) Released Phase One and Phase Two guidance for zero trust maturity for Published on 2026-02-02 152
Public Sector Action
First: 02.02.2026 18:05
Last: 02.02.2026 18:05
Sources 1
About this happening:
The **US National Security Agency (NSA)** released **Zero Trust Implementation Guidelines (ZIGs)** to help organizations move toward **target-level zero trust maturity**. The guid...
US National Security Agency (NSA) / Zero Trust Implementation Guidelines (ZIGs) Released Phase One and Phase Two guidance for zero trust maturity for Published on 2026-02-02 152
Public Sector ActionAbout this happening: The **US National Security Agency (NSA)** released **Zero Trust Implementation Guidelines (ZIGs)** to help organizations move toward **target-level zero trust maturity**. The guid...
CISA, NCSC-UK and FBI publish OT secure connectivity principles for connected industrial systems
Defensive Guidance
First: 14.01.2026 14:00
Last: 14.01.2026 14:00
Sources 1
About this happening:
A new **joint OT guidance** from **CISA**, **NCSC-UK**, the **FBI**, and partners gives operators practical ways to reduce **exposed and insecure connectivity**, lowering the risk...
CISA, NCSC-UK and FBI publish OT secure connectivity principles for connected industrial systems
Defensive GuidanceAbout this happening: A new **joint OT guidance** from **CISA**, **NCSC-UK**, the **FBI**, and partners gives operators practical ways to reduce **exposed and insecure connectivity**, lowering the risk...
CISA releases Cross-Sector CPG 2.0
Public Sector Action
First: 11.12.2025 14:00
Last: 11.12.2025 14:00
Sources 1
About this happening:
The **Cybersecurity and Infrastructure Security Agency (CISA)** released **version 2.0** of the **Cross-Sector Cybersecurity Performance Goals (CPGs)**, updating voluntary guidanc...
CISA releases Cross-Sector CPG 2.0
Public Sector ActionAbout this happening: The **Cybersecurity and Infrastructure Security Agency (CISA)** released **version 2.0** of the **Cross-Sector Cybersecurity Performance Goals (CPGs)**, updating voluntary guidanc...
Multinational OT inventory guidance follow-up
Public Sector Action
First: 30.09.2025 15:06
Last: 30.09.2025 15:06
Sources 1
About this happening:
Cybersecurity agencies from **the United States, Canada, Australia, New Zealand, the Netherlands, Germany, and the United Kingdom** published follow-up guidance for **OT organizat...
Multinational OT inventory guidance follow-up
Public Sector ActionAbout this happening: Cybersecurity agencies from **the United States, Canada, Australia, New Zealand, the Netherlands, Germany, and the United Kingdom** published follow-up guidance for **OT organizat...
CISA draft SBOM minimum elements for public comment
Public Sector Action
First: 22.08.2025 15:00
Last: 22.08.2025 15:00
Sources 1
About this happening:
**CISA** released a **draft SBOM Minimum Elements** guide for **public comment**, setting an updated baseline for software-component documentation. The draft adds items such as **...
CISA draft SBOM minimum elements for public comment
Public Sector ActionAbout this happening: **CISA** released a **draft SBOM Minimum Elements** guide for **public comment**, setting an updated baseline for software-component documentation. The draft adds items such as **...
Timeline
-
04.09.2025 13:37 2 articles · 8mo ago
US and allied agencies release new SBOM guidance
Legal Policy Action UpdateGovernment agencies in the US and 14 allied countries release new guidance on Software Bills of Materials (SBOMs), urging broader adoption of SBOM generation, analysis, sharing, and post-deployment monitoring to improve software supply-chain security, vulnerability management, and license management.
Show sources
- US, Allies Push for SBOMs to Bolster Cybersecurity — www.securityweek.com — 04.09.2025 13:37
- US, Allies Push for SBOMs to Bolster Cybersecurity — www.securityweek.com — 04.09.2025 13:37