National Supply Chain Integrity Month

April is National Supply Chain Integrity Month and for federal contractors this has been a time to reflect on the importance of Supply Chain security! The Cybersecurity Infrastructure Security Agency (CISA) has published a number of resources this month designed to reinforce the importance of government and industry stakeholders working together to improve supply chain security. 

Check out CISA’s SCRM Essentials and the joint resource published by CISA and the National Institute of Standards and Technology (NIST) on Defending Against Software Supply Chain Attacks. 

The SCRM Essentials provides practical guidance that businesses can use to implement organizational supply chain risk management practices designed to improve their overall security posture. The Defending Against Supply Chain Attacks publication provides an overview of software supply chain risks and recommendations for software customers and vendors to minimize these risks.