CISA’s Secure by Demand guidance provides a list of questions that enterprise software buyers should ask software producers to evaluate their security practices prior to, during and after procurement. It’s a good idea in principle as every organization needs to be asking the questions presented in “Secure by Demand Guide: How Software Customers Can Drive a Secure Technology Ecosystem.”
The post Secure by Demand: Going Beyond Questionnaires and SBOMs appeared first on Security Boulevard.
This article has been indexed from Security Boulevard