Secure Controls Framework
Download The SCF
SCRM/C-SCRM

What is Cyber Supply Chain Risk Management (C-SCRM)?

Direct Answer

Cyber Supply Chain Risk Management (C-SCRM) focuses specifically on cybersecurity risks in supply chains. It addresses threats including malicious code inserted in software or hardware, compromised supplier access to organizational systems, data theft via supplier networks, and vulnerabilities introduced through third-party components. NIST SP 800-161 is the primary federal guidance document for C-SCRM.

Keep Exploring

Relevant Resources

References

Authoritative Sources