Cybersecurity in the supply chain is a dense, massively complicated topic that lies beyond the comprehension of all but a few dedicated experts. Supply chain is the new black. This is an old topic for defense organizations, says Matt Barrett, NISTs Cybersecurity Framework lead. NIST began its cybersecurity supply chain risk management efforts in 2008 and worked for several years engaging with the private sector to develop recommendations and guidance. The National Institute of Standards and Technology (NIST) released its flagship supply chain guidance in 2015.”]