The Federal Drive with Terry Gerton Arrington kicks off effort to eliminate RMF for DoD software
May 9, 2025
Jason Miller, executive editor at Federal News Network, dives into the Defense Department's ambitious Software Fast Track initiative. He discusses how this program aims to replace the outdated Risk Management Framework with more agile processes, facilitating quicker access to secure software. Miller highlights the focus on establishing robust cybersecurity requirements and leveraging new technologies like AI and software bill of materials. Additionally, he outlines the anticipated changes in legislation that will modernize DOD's software acquisition strategy.
AI Snips
Chapters
Transcript
Episode notes
DoD's SWIFT Overhauls Software Security
- The DoD launched the SWIFT initiative to replace the Risk Management Framework for software acquisition.
- SWIFT aims to simplify secure software access using clear risk criteria and AI-based verification.
Arrington's EMAS & SBOM Approach
- Kate Arrington describes using EMAS and SBOM submissions to expedite risk assessments.
- Vendors submit software data and third-party validations for DoD's AI-driven review.
Industry Input Shapes SWIFT
- DoD issued three RFIs to gather industry feedback on SWIFT tools, assessments, and AI automation.
- Comments from industry are due by May 20th to shape SWIFT's implementation.