Due Date: 11:59 pm EST Wednesday of Unit 8 Points: 100 Overview: You are the CISO of a critical infrastructure company which also provides essential services to the federal government (as well as local and state governments). You need to respond to the President’s Executive Order of May 12, 2021, with respect to section 4 of the EO – “Enhancing Software Supply Chain Security” for your company. Instructions: Using everything you’ve read and experienced in this class, what will you change in the way that your company develops software, purchases software, or utilizes cloud-based software-as-a-service? What security practices (from NIST SSDF or any of the maturity models or SDLCs) will you add to your software development methodology as well as your software procurement process to respond to the President’s order to improve cybersecurity in an industry that is a vital critical infrastructure and part of the nation’s supply chain? Requirements: • Should target your organization’s senior leadership • 4–6 page APA paper excluding title and reference pages • Provide at least four references and in-text citations in APA format (these will preferably be in addition to the main text) • College level writing • Should be your own work in your own words
