NISTIR 8276NISTIRFinalpublication

NISTIR 8276 - Key Practices in Cyber Supply Chain Risk Management

Presents key practices for managing cybersecurity risks in supply chains based on industry interviews and case studies. Provides actionable recommendations for integrating cybersecurity into the system lifecycle, determining supplier criticality, and mentoring suppliers.

View on NIST.gov

Publication Number

8276

Series

NISTIR

Status

Final

Date

2021-02

supply chainC-SCRMrisk managementthird-partyprocurement

References(2)

CSF 2.0NIST Cybersecurity Framework (CSF) 2.0 SP 800-161r1SP 800-161 Rev. 1 - Cybersecurity Supply Chain Risk Management Practices