3. Cybersecurity Supply Chain Risk Management (NIST-based tools)
The third set consists of 10 operational tools addressing cybersecurity from a supply chain perspective.
The tools are:
- structured according to the NIST framework
- translated into concrete actions that can be used in daily operations
- targeted at collaboration with suppliers and partners
The focus is on making cybersecurity practical, prioritizable, and usable.
Tools for cybersecurity supply chain risk management
0: Overview
1: Strategy for risk management and stakeholder analysis
2: Cybersecurity roles and responsibilities
3: Integration of cybersecurity in risk management and improvement processes
4: Prioritization of suppliers
5: Cybersecurity in contracts
6a: Cybersecurity due dilligence towards new customers
6b: Cybersecurity due dilligence towards new suppliers
7: Cybersecurity register
8: Involving partners in cyber incidents
9: Integration of supply chain cybersecurity through the product and service life cycle
10: Check list for terminitation of collabortation