August In 2023, NIST published an initial draft of a document that recommends actionable measures for integrating the fundaments of software supply chain security assurance into CI/CD pipelines to prepare organizations that plan to deploy cloud-native applications. This session will feature one of this paper’s key authors, NIST’s Ramaswamy Chandramouli, who will detail these recommendations and explain how they can help organizations better company with the tenets of Executive Order 14028 and NIST’s Secure Software Development Framework (SSDF).