U.S. National Institute of Standards and Technology revised its guidance for countering supply chain risks. NIST advises on identifying, assessing and responding to cybersecurity risks throughout the supply chain at all levels of an organization. The guidance is part of NIST’s response to Executive Order 14028: Improving the Nations Cybersecurity – specifically, Sections 4(c) and (d) focus on enhancing the security of the software supply chain. The revised document is the result of several years of development, which entailed two draft versions.”]
Source: https://www.cuinfosecurity.com/nist-updates-guidance-for-supply-chain-risk-management-a-19029