CISSP - Security and Risk Management - Section 1.11
Apply Supply Chain Risk Management (SCRM) concepts including third-party assessment, minimum security requirements, and service-level requirements.
Apply Supply Chain Risk Management (SCRM) practices by assessing third-party risk, setting minimum security requirements, and defining service-level requirements for suppliers. Recognise how hardware integrity mechanisms such as silicon root of trust reduce the risk of tampered components entering the supply chain.
SCRMthird-party riskservice-level requirementsminimum security requirementssilicon root of trust
More in this domain
Back to all Security and Risk Management objectives, or the CISSP cert hub.
Examworthy is not affiliated with or endorsed by (ISC)2. Original, blueprint-aligned practice material only.