Information and Communications Technology Supply Chain Risk Management Task Force: Interim Report


U.S. critical infrastructure and governments at all levels rely heavily on Information and Communications Technology (ICT). Ensuring resilience and trust in our ICT supply chain is more than just a cybersecurity issue – it touches national security, economic security, and public health and safety.

Effective supply chain risk management is a national imperative. This effort will require a whole of government and whole of society approach. Continued technological advancement in the ICT supply chain – with welcomed developments in 5th Generation (5G) mobile communications – only increases the necessity to take this issue seriously.

This Interim Report (Report) describes the work of the U.S. Department of Homeland Security (DHS) Cybersecurity and Infrastructure Security Agency (CISA)’s Information and Communications Technology (ICT) Supply Chain Risk Management (SCRM) Task Force (Task Force) over the past year. As described in this Report, the Task Force is a collaborative endeavor between representatives of industry and government designed to investigate and recommend methods to manage ICT supply chain risks. Its agile, mission-focused approach addresses these issues head-on and provides actionable outputs that create tangible results.