Cybersecurity Supply Chain Risk Management (C-SCRM) is a systematic process for managing exposure to cybersecurity risks throughout the supply chain and developing appropriate response strategies, policies, processes, and procedures. This publication aims to guide enterprises on identifying, assessing, selecting, and implementing risk management processes and mitigating controls across the enterprise to help manage cybersecurity risks throughout the supply chain.
