Overlay Name: NIST SP 800-161, Supply Chain Risk Management Practices for Federal Information Systems and Organizations
Overlay Publication Date: April 2015
Technology or System: Cyber Supply Chain
Overlay Author: Jon Boyens (NIST), Celia Paulsen (NIST), Rama Moorthy (Hatha Systems), Nadya Bartol (Utilities Telecom Council)
Comments: Identification and augmentation of information and communications technology (ICT) supply chain risk management (SCRM)-related controls in SP 800-53, Revision 4. Refer to Chapter 3 for the ICT SCRM Controls. The audience for this publication is federal agency personnel involved in engineering/developing, testing, deploying, acquiring, maintaining, and retiring Information and Communications Technology (ICT) components and systems.
Overlay Point of Contact: Jon Boyens
Return to Control Overlay Repository Overview
Security and Privacy: general security & privacy, privacy, risk management, security measurement, security programs & operations
Laws and Regulations: E-Government Act, Federal Information Security Modernization Act