Supply Chain Risk Management(SCRM) ISO/IEC27036 / ISO28000
Understanding Supply-Chain Information Security Risk Management
Supply Chain Risk Management(SCRM) ISO/IEC27036 / ISO28000 udemy course
Understanding Supply-Chain Information Security Risk Management
In today's Supply Chain, cyber threats, hackers, espionage, and warfare are increasing the amount of successful attacks on critical infrastructure and companies of all sizes. We have technologies that are somewhat successful at blocking and stopping "some" attacks. But what happens when we need supply chain security or risk management? The things we wear, eat, and need would no longer exist. Risk Management is not the sexier of areas in security, but since it is so invisible, it is just as important as secure coding or SOC.
Amidst these threat vectors, many people forget some of the most prominent targets, like the supply chain and the security of data, information, and IP, as it leaves the outsourcing company (acquirer) to the supplier. An example of this type of attack is what happened to one of the biggest SIM manufacturers in the world, Gemalto.
Supply chain risk management in its simplest form:
Concentrates on identifying supply chain information security risks and the likelihood of those risks being exploited by missing governance, processes, and misunderstandings between acquirer and supplier
What types of risks are likely to a company or possibly a nation if supply chain risks and suppliers are not managed correctly
Help you identify which risks you have based on the type of supplier and, more importantly, which assets you need to protect
Choose mechanisms, processes, and procedures that can mitigate and minimize some risks
![YouTube Clip Master 2.0 [Make Money without Making Videos]](https://img-c.udemycdn.com/course/750x422/1565060_335e_4.jpg){kind=small}