Projects
Cybersecurity Supply Chain Risk Management
Cybersecurity Supply Chain Risk Management C-SCRM
Past Events
Initial Public Draft SP 800-161 Revision 1
May 12, 2021
The NIST Cyber Supply Chain Risk Management Team is hosting a webinar to provide an overview of the changes made in its Initial Public Draft of Special Publication 800 – 161, Revision 1, Supply Chain Risk Management Practices...
Software and Supply Chain Assurance Forum, Fall 2019
September 17, 2019 - September 18, 2019
The Software and Supply Chain Assurance Forum (SSCA) provides a venue for government, industry, and academic participants from around the world to share their knowledge and expertise regarding software and supply chain risks,...
Spring 2018 Software and Supply Chain Assurance Forum
May 1, 2018 - May 2, 2018
The Software and Supply Chain Assurance Forum (SSCA) provides a venue for government, industry, and academic participants from around the world to share their knowledge and expertise regarding software and supply chain risks,...
Cyber Risk Analytics Project Review Workshop
October 26, 2017
The purpose of this workshop is to review with participants, sponsors, and key interested parties the findings and lessons learned from a two-year long NIST and GSA-sponsored Cyber Risk Analytics project. A team composed of...
Best Practices in Cyber Supply Chain Risk Management
October 1, 2015 - October 2, 2015
Full Details (Agenda, Case Studies & Workshop Briefings) On October 1-2, 2015, NIST will host a workshop to share information on Best Practices in Cyber Supply Chain Risk Management, which will provide insights on: State...
Project Links
Additional Pages
Topics
Security and Privacy:
controls assessment, cybersecurity supply chain risk management, information sharing, malware, risk assessment, security controls, security measurement, security programs & operations, systems security engineering, vulnerability management
Technologies:
cloud & virtualization, hardware, software & firmware
Applications:
communications & wireless, cybersecurity framework
Laws and Regulations:
Comprehensive National Cybersecurity Initiative, Cybersecurity Enhancement Act, Cybersecurity Strategy and Implementation Plan, Cyberspace Policy Review, Executive Order 13636, Federal Acquisition Regulation, Federal Information Security Modernization Act, Homeland Security Presidential Directive 12, OMB Circular A-130
Topics
Security and Privacy:
controls assessment, cybersecurity supply chain risk management, information sharing, malware, risk assessment, security controls, security measurement, security programs & operations, systems security engineering, vulnerability management
Technologies:
cloud & virtualization, hardware, software & firmware
Applications:
communications & wireless, cybersecurity framework
Laws and Regulations:
Comprehensive National Cybersecurity Initiative, Cybersecurity Enhancement Act, Cybersecurity Strategy and Implementation Plan, Cyberspace Policy Review, Executive Order 13636, Federal Acquisition Regulation, Federal Information Security Modernization Act, Homeland Security Presidential Directive 12, OMB Circular A-130
Created May 24, 2016, Updated November 30, 2021