On May 12, 2021, President Joe Biden issued the Executive Order on Improving the Nation’s Cybersecurity. This EO enumerates that “…the prevention, detection, assessment, and remediation of cyber incidents is a top priority and essential to national and economic security.” The EO contains a significant level of detail regarding areas of improvement for federal IT systems, as well as policy responses to be implemented by the government in support of greater security for private and public IT systems. The EO mentions in some detail the shift to zero trust security as a part of what is needed to combat cyber threats, as well as increased reliance on enhanced supply chain security.
In the world of technology, there are paradigms of language that arise organically and artificially over time. Necessity requires a shared mode of communication for ideas and as a result, descriptors, nouns, and technical designators are created and shared. The problem arises when certain words acquire a surfeit of meaning, so much so that they paradoxically become less meaningful. There are many examples of this but for our purposes, we’re going to look at “Supply Chain Security”.
By Jim Hietala (VP, BD and Security), Andras Szakal (VP and CTO), John Linford Security and OTTF Forum Director) – The Open Group
In potentially the most damaging cyber-supply chain attack ever, a leading IT systems management vendor became the latest hi-tech company to suffer a major cybersecurity breach with wide-reaching consequences. The malware that caused the attack has been dubbed SUNBURST by Microsoft and code-named Solorigate by FireEye, the security consulting firm that uncovered the breach after falling victim to it late last year.
After successfully infiltrating the development environment, attackers were able to observe and learn how to subvert the vendor’s development and operations pipeline. Hackers were then able to maliciously taint the vendor’s product by planting a sophisticated trojan. Once the software, which required broad systems access, was installed in customers’ environments, the attackers were able to leverage the tainted software to exfiltrate sensitive information from within an organization’s network.
In the ongoing transition to Digital-First, an increasing number of technology executives, managers, and practitioners are looking for new approaches that will help them to make sense of the evolving business landscape and deliver digital products and services.
As an organization that is known for solving business issues through global industry collaboration, The Open Group hosted its third virtual event October 26-29, 2020, which provided over 3,300 registrants with the opportunity to discover the critical digital standards that enable a smooth transition to a Digital-First enterprise.
The Open Group hosted its latest event at the Marriott Riverwalk in the lively city of San Antonio, Texas. On January 27 – 30, we welcomed attendees from across the globe – including decision-makers, Enterprise Architects, Data Scientists, engineers, technologists, and end-users representing many businesses and governments – to explore how organizations can utilize their growing volume of data effectively and securely as part of a digital transformation program.
By Steve Nunn, President and CEO, The Open Group
As we usher in the new decade, I would like to express my sincerest wishes for you – our valued Members, The Open Group global community, and staff – to enjoy much happiness and great success in 2020.
What a year it has been here at The Open Group! As I reflect on 2019 and consider what is to come in 2020, one thing is very clear – The Open Group is doing even more of what it does best – helping to solve real business problems through technology standards.
By Loren K. Baynes, Director, Global Marketing Communications, The Open Group The Open Group hosted its latest event in the Scottsdale Plaza Hotel, Arizona, January
The Open Group, the vendor-neutral technology standards consortium, is hosting its upcoming event in Scottsdale, Arizona, January 28-31, 2019. The Open Group Scottsdale 2019 will bring together vendors and end user organizations to discuss ’Digital in Practice and the Supply Chain’. Hundreds of attendees are expected including, Enterprise Architects, engineers, technologists, and end-users representing many businesses and governments.
The sun was shining down on the iconic Cutty Sark in London – the celebrated, historic sailing ship and fastest of its time – as delegates of The Open Group Awards arrived at the event on Tuesday evening, April 17.
By The Open Group The increase of cybersecurity threats, along with the global nature of Information and Communication Technology (ICT), results in a threat landscape ripe for the introduction of tainted (e.g., malware-enabled or malware-capable) and counterfeit components into ICT … Continue reading →
By Loren K. Baynes, Director, Global Marketing Communications, The Open Group During the week of July 18th, The Open Group hosted over 200 attendees from 12 countries at the Four Seasons hotel on the beautiful banks of Lady Bird Lake … Continue reading →
The Open Trusted Technology Provider™ Standard (O-TTPS), a Standard from The Open Group for Product Integrity and Supply Chain Security, Approved as ISO/IEC International Standard Doing More to Secure IT Products and their Global Supply Chains By Sally Long, The … Continue reading →