Inside Cybersecurity

July 19, 2024

Daily News

Information Technology Industry Council proposes adding supply chain references to NIST cyber framework update

By Sara Friedman / April 26, 2022

One way to incorporate NIST’s supply chain risk management work into the “CSF 2.0” update is to add “informative references,” according to the Information Technology Industry Council, which argues the volume of supply chain guidance developed since 2018 could create confusion among stakeholders.

NIST announced plans in February to update the cybersecurity framework through the release of a request for information. As part of the National Initiative for Improving Cybersecurity in Supply Chains (NIICS) launch, NIST asked for details on...

Log in to access this content.

Not a subscriber? Sign up for 30 days free access to exclusive news and analysis on cybersecurity regulations and more.