Jeremy Pickett 11/11/24 Jeremy Pickett 11/11/24

ID.SC-2: Supply Chain Risk Management

Cyber supply chain risk management processes are identified, established, assessed, managed, and agreed to by organizational stakeholders.

Jeremy Pickett 11/8/24 Jeremy Pickett 11/8/24

ID.SC-1: Supply Chain Risk Management

Cybersecurity risks to organizational assets are identified and managed.

Jeremy Pickett 11/7/24 Jeremy Pickett 11/7/24

The organization’s determination of risk tolerance is informed by its role in critical infrastructure and sector-specific risk analysis.

Jeremy Pickett 11/6/24 Jeremy Pickett 11/6/24

Organizational risk tolerance is determined and clearly expressed.

Jeremy Pickett 11/5/24 Jeremy Pickett 11/5/24

Risk management processes are established, managed, and agreed to by organizational stakeholders.