Service

Supply Chain Risk Assessments 

Task type
Assess your risk level
Readiness Level
Foundational
Related topics:
Cybersecurity Best Practices, Organizations and Cyber Safety, Cyber Threats and Advisories

Description

DOJ performs research and analysis of hardware and software acquisitions to identify supply chain risks, including vendor insolvency and litigation, cyber terrorism, malware, data theft, and Advanced Persistent Threat (APT) risks. When DOJ’s point-in-time assessment is completed, a summary risk assessment report is provided, including recommendations for risk mitigations.

Contact

This service is offered through our federal service partner, the U.S. Department of Justice (DoJ). For more detailed information about this service, please visit the U.S. Department of Justice IT Services page.

You can also download the DOJ's cybersecurity shared services catalog.

For inquiries about DOJ-offered services or if interested in purchasing services, please email: justiceitservices@usdoj.gov.

Tags

Audience
Federal Government
Topics
Cybersecurity Best Practices, Organizations and Cyber Safety, Cyber Threats and Advisories, Information and Communications Technology Supply Chain Security
Programs
Cyber Marketplace

Related Services

Respond to an incident, Assess your risk level | Foundational, Intermediate

Metro State Cybersecurity Clinic

The Metro State Cybersecurity Clinic seeks to train students from diverse backgrounds—with varying academic expertise—to strengthen the digital defenses of under-resourced organizations in our communities.
Respond to an incident, Assess your risk level | Foundational, Intermediate

Louisiana State University - Cybersecurity Clinic

In conjunction with the Louisiana Small Business Development Center, the Louisiana State University Cybersecurity Clinic is helping to raise the cybersecurity baseline for small businesses by offering pro-bono cybersecurity services.
Intermediate

Semgrep

Semgrep OSS is an open-source, static analysis tool for searching code, finding bugs, and enforcing code standards at editor, commit, and CI time.