Cyber Supply Chain Risk Management (C-SCRM) focuses specifically on cybersecurity risks in supply chains. It addresses threats including malicious code inserted in software or hardware, compromised supplier access to organizational systems, data theft via supplier networks, and vulnerabilities introduced through third-party components. NIST SP 800-161 is the primary federal guidance document for C-SCRM.
Keep Exploring