Supply Chain Working Group

CISA Releases ICT Supply Chain Risk Management Task Force Year 2 Report

Today, the Cybersecurity and Infrastructure Security Agency (CISA) and government and industry members of the Information and Communications Technology (ICT) Supply Chain Risk Management (SCRM) Task Force released an annual report on its progress to advance meaningful partnerships and analysis around supply chain security and resilience.
Last Published Date: December 17, 2020

ICT SCRM Task Force Year Two Report

This report provides an update on the ICT Supply Chain Risk Management (SCRM) Task Force’s progress in Year Two to advance meaningful partnerships and analysis around supply chain security and resilience. The report summarizes the work of the Task Force’s five working groups to address challenges to information sharing, threat analysis, qualified bidder and qualified manufacturer lists, vendor assurance, and impacts of the COVID-19 pandemic on ICT supply chains.

Return to ICT Supply Chain Risk Management.

ICT SCRM Task Force Events

CISA's virtual event, Partnership in Action: Driving Supply Chain Security, will take place on December 17 from 2-4 pm ET. This event is a unique opportunity for the cybersecurity, critical infrastructure, and information security communities to learn about the Task Force’s progress, findings, and accomplishments in Year Two to further assess and manage risks associated with the global ICT supply chain.

NRMC Resources

National Risk Management Center (NRMC) outreach materials, information, and guides. Download and share these NRMC resources to enhance critical infrastructure security and resilience.

NRMC

CISA's National Risk Management Center works closely with the critical infrastructure community to identify and analyze the most significant risks to our Nation and strategically manage long-term resiliency and security efforts to “Secure Tomorrow”.

ICT SCRM Task Force: Interim Report

This Interim Report (Report) describes the work of the U.S. Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA)’s Information and Communications Technology (ICT) Supply Chain Risk Management (SCRM) Task Force (Task Force) over the past year. As described in this Report, the Task Force is a collaborative endeavor between representatives of industry and government designed to investigate and recommend methods to manage ICT supply chain risks. Its agile, mission-focused approach addresses these issues head-on and provides actionable outputs that create tangible results.

ICT SCRM Task Force

The Information and Communications Technology (ICT) Supply Chain Risk Management (SCRM) Task Force is a public-private partnership charged to identify and develop consensus risk management strategies to enhance global ICT supply chain security.