|
LOG IN |
|
 
|
US Govt could rate software manufacturers according to their supply chain28 Oct 2010Source Fierce GovernmentIT The US government could rate software manufacturers according to their supply chain practices when considering which applications to buy, said a Homeland Security Department official while speaking at an industry conference. "There are suppliers in that chain who are people we would not allow into our facilities, but we're just going to take their software and install it? Anybody understand that there's a problem with that?" said Joe Jarzombek, director for software assurance and global cybersecurity management within the DHS National Cyber Security Division. The intention behind the ratings isn't to create a blacklist of vendors deemed too risky for federal acquisition, but to identity supply sources that "require a little bit more due diligence and therefore risk management," Jarzombek added. In a related conference session, former Office of Management and Budget Administrator for e-Government and Information Technology Karen Evans urged the government to be tougher with all information technology companies over their supply chain practices. The minute that the Defense Department rejects a router for cybersecurity reasons, "it will send a ripple effect through the industry, and then people will fix it," she said. "If you marked a deliverable as undeliverable, it gets everybody's attention all the way up the chain." Read more here |
  |
