National Cybersecurity Center of Excellence (NCCoE) Software Supply Chain and DevOps Security Practices. Notice.
“SUMMARY: The National Institute of Standards and Technology (NIST) invites organizations to provide letters of interest describing products and technical expertise to support and demonstrate an applied risk-based approach and recommendations for secure DevOps (software development and operations) and software supply chain practices for the Software Supply Chain and DevOps Security Practices project. This notice is the initial step for the National Cybersecurity Center of Excellence (NCCoE) in collaborating with technology companies to address DevOps and software supply chain security challenges identified under the Software Supply Chain and DevOps Security Practices project. Participation in the project is open to all interested organizations. DATE: Collaborative activities will commence as soon as enough completed and signed letters of interest have been returned to address all the necessary components and capabilities, but no earlier than June 14, 2023.”
Federal Register, May 15, 2023, pp.30947-30950, at: https://www.govinfo.gov/content/pkg/FR-2023-05-15/pdf/2023-10221.pdf