January 27, 2023
CISA releases supply chain task force ‘handbook’ aimed at addressing small business risks
CISA’s supply chain task force has released a “handbook” designed to help small and medium-size business address risk mitigations in the information and communications technology sector.
The handbook breaks down ICT supply chain risk into six categories with recommendations on mitigation resources for each category. The categories are cyber expertise, executive commitment, ICT supply chain risk management, single source supplier, supplier disruption and supplier visibility.
Knowing where to start on supply chain risk “can seem overwhelming,” the handbook says....