Information and Communications Technology Sector
| Title | Information and Communications Technology Sector |
| Publication Type | Miscellaneous |
| Year of Publication | 2021 |
| Keywords | Compromise, Cyber-SCRM, information and communications technology, information technology, IT, risk, SCRM, supply chain risk management, vendor networks |
| Abstract | Information and Communications Technology (ICT) supply chain risk management (SCRM) is the process of identifying and mitigating risks in the manufacture and distribution of ICT products and services. While the Information Technology (IT) sector and the Communications sector face different supply chain risks, their mitigation strategies are similar. Both sectors emphasize having an end-to-end Cyber-SCRM program, continuously evaluating risks to vendor networks, and maintaining geographically-diverse and occasionally-redundant supply chains in the event of a manufacturer compromise. |
| URL | https://www.dni.gov/files/NCSC/documents/supplychain/Information_and_Communications_Technology_Secto... |
| Citation Key | node-79999 |