The Executive Order on Cybersecurity

Security Requirements for Software Vendors

In May of 2021, the Biden administration released an executive order on cybersecurity that outlines new security requirements for vendors selling software to the U.S. government. These requirements include security testing in the development process and a bill of materials for the open source libraries in use, so known vulnerabilities are disclosed and able to be tracked in the future. Although the order only impacts companies that sell software to the federal government in the near term, it also requires the development of a pilot program that would eventually change security requirements for all software vendors.

Product Download Background

Learn More About Software Security From Gartner

Interested in working with us to help shape the requirements?