Dive Brief: Following a series of cyberattacks that exposed vulnerabilities in the United States' critical infrastructure, President Joe Biden signed an executive order May 12 aimed at bolstering defenses and transparency, including development of a Cyber Safety Review Board (CSRB) to assess major intrusions. The recent Colonial Pipeline attack and SolarWinds supply chain hack illustrate that software procurement and distribution is a major vulnerability, according to a senior White House official. "We routinely install software with significant vulnerabilities into some of our most critical systems and infrastructure," they said in a Wednesday evening briefing with reporters. To address this, the executive order requires the use of a Software Bill of Materials (SBOM) in government procurements, to allow for more efficient tracking of known vulnerabilities. The Edison Electric Institute (EEI), which represents investor-owned utilities, and the North American Transmission Forum (NATF), which serves as a forum for power transmission entities, have been collaborating with the federal government to pilot the use of SBOMs in the energy sector.