Written by: Katie Hart, Program Director, CISQ Businesses of all sizes are relying increasingly on technology to operate effectively and efficiently. […]... Read more →
02/16/2023
Cybersecurity and Supply Chains: Protecting Your Business from End-to-End
Posted at 4:43 pm in Uncategorized, | Permalink
05/17/2022
Transformation of Software with DevOps
Poor quality severely hinders the effectiveness of business because of bugs and breaches. Within the software development lifecycle, IT teams focus on quality to strengthen the feedback loop between IT, operations, and the customer experience. CISQ’s software quality standards: security, reliability, performance efficiency, and maintainability, can be used in the DevOps toolchain to create software free from dangerous weaknesses and prevent failures. ... Read more →
Posted at 1:20 pm in Uncategorized, | Permalink
02/24/2022
Five Reasons to Start Using ISO 5055 in Your Supply Chain Process
Much of the cost and associated business risk was caused by poorly constructed software. With the damage of some outages and breaches exceeding $100 million, industry and government must address the risks to which their systems expose the enterprise. ISO 5055 is the first international standard to measure the risks inherent in the internal construction of a software system created by CISQ and OMG. It contains measures for the Reliability, Security, Performance Efficiency, and Maintainability of software.... Read more →
Posted at 1:16 am in Uncategorized, | Permalink
11/29/2021
Updated: Cyber Resilient Weapon Systems Body of Knowledge (CRWS-Bok)
The Strategic Protection and Exploitation (STP&E) releases the Cyber Resilient Weapon Systems Body of Knowledge (CRWS-BoK) portal version 1.2. Read the full press release here. The CRWS-Bok portal benefits science and technology professionals in the field of cyber resilient weapon systems by supplying research tools. This information will aid engineers across multiple industries, including the Department of Defense (DoD), the Federal Government, and academia in the development of weapon systems... Read more →
Posted at 4:05 am in Uncategorized, | Permalink
Tags: CRWS-BOK, CYBER RESILIENCE, CYBER SECURITY, DEPARTMENT OF DEFENSE,
01/04/2021
Tech Outlook: Use the Vulnerabilities of 2020 to Strengthen the Technology of 2021
2020 has been a challenging year. With the Covid-19 pandemic upending businesses and ways of life, society relied on technology to work from home, attend school, shop for groceries, and connect with family and friends we could not see in person. “Zoom” is now a noun and a verb. A survey from McKinsey and Company found that response to the COVID-19 pandemic sped the adoption of digital technologies by several years. Companies accelerated the digitization of their customer and supply chain interactions and of their internal operations by three to four years. The share of digital or digitally enabled products in their portfolios accelerated by seven years. The pandemic compressed the timetable for digital transformation initiatives.... Read more →
Posted at 7:14 am in Uncategorized, | Permalink
12/14/2020
How to Accelerate Software Defect Diagnosis with Software Failure Replay
Maurice Wilkes was the first person to write code to solve a real problem on a machine resembling what we think of as a modern computer - an electronic computer that executed stored programmes from memory. He was the world’s first programmer. In his memoir, he recalls the moment when he realised that a good part of the remainder of his life was going to be spent finding errors in his own programmes.... Read more →
Posted at 9:33 am in Uncategorized, | Permalink
11/24/2020
4 Steps to Fix and Implement Cyber Resilient Architecture
Marc Jones, VP of Public Sector, CAST and CISQ member For cyber resilient software, you need to assess the system’s architecture. I’m stressing architecture because architecture can be overlooked. The current state of a complex system is rarely in line with design models, meaning system-level vulnerabilities may be lurking in... Read more →
Posted at 12:55 pm in Uncategorized, | Permalink
06/24/2020
AICPA Introduces SOC for Supply Chain, Promotes Software Quality Standards for Certification
Tracie Berardi, Program Manager, CISQ Managing Supply Chain Software Risk The American Institute of Certified Public Accountants (AICPA) is the world’s largest member association representing the accounting profession with over 400,000 members in 143 countries. AICPA produces the System and Organization Controls (SOC) standards used by CPAs and audit firms... Read more →
Posted at 1:34 am in Uncategorized, | Permalink
03/09/2020
Coronavirus and Cyber-Attacks – How to Inoculate Your Organisation
As a young engineer and mission specialist working on Nuclear, Biological, Chemical, Radiological (NBCR) systems I learnt how a potential enemy would deploy these weapons alongside conventional “kinetic” weapons (bombs and shells) for maximum effect. Trying to run 3 miles in a NBCR “noddy suit” whilst being shot at is hard work – so I am told (I was a backroom boy).... Read more →
Posted at 6:30 am in Uncategorized, | Permalink
10/27/2019
Takeaways from CISQ’s 7th Annual Cyber Resilience Summit
The event started with a keynote from Bob Kolasky, Assistant Director of the National Risk Management Center (NRMC) with the Cybersecurity and Infrastructure Security Agency (CISA). Bob started by explaining the main priorities for NRMC which include federal network security, election security, industrial control security, and supply chain security. ... Read more →
Posted at 1:58 am in Uncategorized, | Permalink