public-sector
Safeguard articles tagged "public-sector" — guides, analysis, and best practices for software supply chain and application security.
5 articles
Software Supply Chain Security for Government
Executive Order 14028, OMB self-attestation, the CISA attestation form, NIST SSDF, and FedRAMP have made secure software development a condition of selling to government. Here is what agencies and their vendors need.
Application Security for the Public Sector: What's Different
Application security for public sector agencies runs under FedRAMP, StateRAMP, and Executive Order 14028 SBOM mandates that private-sector programs rarely have to satisfy on the same timeline.
State and local government software supply chain in 2026
StateRAMP, election infrastructure, court case management, and the budget-versus-risk gap that defines software supply chain security for state and local agencies.
Port of Seattle Rhysida: Airport Ransomware and the Public-Sector Tail
On August 24, 2024, Rhysida ransomware took down Port of Seattle systems including Sea-Tac airport check-in, baggage, and the Port website. The Port refused a $6 million ransom. We unpack the case.
Public-Sector Software Procurement Requirements
A tour through the attestations, self-certifications, and supply chain obligations that now shape how governments buy software.