NIST releases report outlining supply chain risk management best practices

The National Institute of Standards and Technology has published a report on supply chain risk management that incorporates research with industry on specific use cases and provides insight into best practices to improve security.

The report, “Key Practices in Cyber Supply Chain Risk Management (C-SCRM): Observations from Industry,” is intended to provide “the ever-increasing community of digital businesses a set of Key Practices that any organization can use to manage cybersecurity risks associated with their supply chains,” NIST said...