|
control familySR
Supply Chain Risk Management (SR)
Supply Chain Risk Management - Contains 12 controls and 15 control enhancements.
12
Controls
15
Enhancements
supply-chainacquisitionthird-partyrisk
Why These Connect
Maps To1
These are equivalent or closely aligned requirements in other frameworks.
“Supply Chain Risk Management maps to CIS v8 Control 15 (Service Provider Management)”
Addresses Topic1
This control is relevant to the linked cybersecurity topic area.
“Supply Chain Risk Management directly addresses supply chain security”
Implements1
These controls provide the technical implementation for the linked requirement.
“Supply Chain Risk Management directly maps to Supply Chain Risk Management controls”
Implementing Controls
Cross-Framework Mappings
CIS v8.1CIS Controls v8.1
Controls(12)
SR-1Policy and Procedures (SR-1)
LMH
SR-2Supply Chain Risk Management Plan (SR-2)LMH
SR-3Supply Chain Controls and Processes (SR-3)LMH
SR-4Provenance (SR-4)SR-5Acquisition Strategies, Tools, and Methods (SR-5)LMH
SR-6Supplier Assessments and Reviews (SR-6)MH
SR-7Supply Chain Operations Security (SR-7)SR-8Notification Agreements (SR-8)LMH
SR-9Tamper Resistance and Detection (SR-9)H
SR-10Inspection of Systems or Components (SR-10)LMH
SR-11Component Authenticity (SR-11)LMH
SR-12Component Disposal (SR-12)LMH