CISA issues guide outlining supply chain risk management ‘essentials’

The Cybersecurity and Infrastructure Security Agency has released a six-step guide for organizations to improve their supply chain risk management strategy and build resilience into systems.

“Protecting your organization’s information in a digitally-connected world requires understanding not only your organization’s immediate supply chain, but also the extended supply chains of third-party vendors, service providers, and customers,” CISA said today in a fact sheet accompanying the guide. “These essential steps will assist your organization in managing supply chain risks and...