GovWhitePapers Logo

Sorry, your browser is not compatible with this application. Please use the latest version of Google Chrome, Mozilla Firefox, Microsoft Edge or Safari.

Integrating Cybersecurity into the Acquisition Process

“Cybersecurity is seen as ‘the CISO’s problem’ and is almost never considered an integral element to an IT acquisition, although it should be.” This quote is from a state chief information security officer (CISO) when asked about how cybersecurity is integrated into the state information technology (IT) acquisition process.

The importance of cybersecurity in both the public and private sector cannot be overstated and this is even more true for state government. The past several years has demonstrated that disruptions to state services, the supply chain and public trust have a tremendous impact on state governments. While it is impossible to prevent every incident or disruption, there are steps that can be taken to limit them. A very wise woman once said, “let’s start at the very beginning, a very good place to start.” In this case, the beginning is with the acquisition process—starting with discovering a need and ending with final implementation—and baking cybersecurity into it from the beginning.


Interested in cybersecurity? Check out this GovWhitePapers blog post! You can also find events on cybersecurity on our sister site, GovEvents.


  • Author(s):
  • Mike Garcia
  • Matt Oyer
  • Meredith Ward
  • Share this:
  • Share on Facebook
  • Share on Twitter
  • Share via Email
  • Share on LinkedIn
Integrating Cybersecurity into the  Acquisition Process
  • White Paper
Website:Visit Publisher Website
Publisher:Center for Internet Security (CIS)
Published:May 1, 2021
Copyright:© Copyright 2021

Featured Content

Contact Publisher

Claim Content