All you need to know about NIST’s SSDF

Don’t be late to the game: With the new OMB memo issued in Sep 2022, the direction is clear

It’s now clear that the SSDF framework, which started as a recommendation, is slowly turning into a directive and will have a real impact on the ability to conduct business in the US (and globally). 

The direction is very clear with the new OMB memo issued in Sep 2022.

With this guide, you will gain a deeper understanding of why the SSDF can no longer be ignored.

This guide covers:

  • The growth in the software supply chain attacks
  • A breakdown of NIST’s SSDF and the four main areas it covers
  • A review of SSDF development and its quick transition from recommendation to a directive
  • The benefits of another supply chain security framework, SLSA
  • The building blocks required for successful software supply chain security
  • The use of continuous assurance and the tracking of every process across the SDLC

Download the guide to make sure you’re not too late to the game.

All Resources

Last Resources

Securing the Software Development Lifecycle and Supply Chain
It was great chatting with Liz Vagenas on her podcast #BreakingCyberBarriers on the software supply chain security landscape, the forces shaping it, and the emerging technologies and approaches to mitigate its challenges.

Meet the Scribe Team at RSA 2024 | May 6-9 San Francisco
The Scribe team is eagerly preparing for RSA, and we’re thrilled to invite you to join us!  Make sure to visit our booth #NXT 6,…

Ensure Software Supply Chains Security: Meet Compliance & Legal Obligations
How to meet compliance and legal obligations and ensuring software supply chains

Get the Guide

To view the Guide, please complete the form

Guide cover