Cyber agency’s ICT task force developing template highlighting supply chain risks

A working group in the CISA-led ICT task force is developing a “scalable” template for acquisition professionals, risk managers, and senior level decisionmakers and executives that will help them to assess supply chain risks.

The Information and Communications Technology Supply Chain Risk Management Task Force has four working groups focused on information sharing, risk assessments, qualified bidder lists and qualified manufacturer lists, and vendors. The vendor working group, formed late last year, has taken on the task of creating...