This blog continues Covington’s review of important deadlines and milestones in implementing the Executive Order on Improving the Nations’ Cybersecurity (E.O. 14028, or the “Cyber EO”) issued by President Biden on May 12, 2021. Previous blogs have discussed developments under the Cyber EO in June 2021 and July 2021. This blog focuses on developments affecting the EO that occurred during August 2021.
The Cyber EO requires federal agencies to meet several important deadlines in August 2021. These deadlines are in the areas of enhancing critical software supply chain security, improving the federal government’s investigative and remediation capabilities, and modernizing federal agency approaches to cybersecurity. In addition, the National Institute of Standards and Technology (“NIST”) took several significant actions related to supply chain security in August 2021, not all of which were driven by deadlines in the Cyber EO. This blog examines the actions taken by federal agencies to meet the EO’s August deadlines as well as the NIST actions referred to above.