0      0

(ISC)2 Security Congress 2022

2101726 - An Insider View of CISA's ICT Supply Chain Risk Management (SCRM) Task Force

Oct 10, 2022 2:30pm ‐ Oct 10, 2022 3:30pm


In 2019, CISA convened 60 representatives from across the IT, communications and government sectors to develop strategies to enhance risk management regarding information and communications technology (ICT) supply chain security in the United States. Three years later, the task force has published several documents that can be used in any organization to build a supply chain risk management program. There are full detailed resources as well as some resources specifically designed for small and medium businesses who may not have dedicated risk management professionals. Ever wonder how you could use these resources? Join us for a practical insider's view on this massive undertaking, and learn how three very diverse groups found common ground in cybersecurity and risk management.

Learning Objectives:
  • Identify risks in your own ICT supply chain.
  • Utilize the provided template to tailor a supply chain cybersecurity questionnaire to your organization's needs.
  • Accurately describe and convey the importance of supply chain risk management to executive management.


You must be logged in and own this session in order to post comments.