Research Shows NIST, ISO Supply Chain Standards Have Up to 89 Percent Overlap of Risk Controls

The push for supply chain risk management standards is growing across the government. The Defense Department’s Cybersecurity Maturity Model Certification (CMMC) requirements that are under review may get most of the attention, but the National Institute of Standards and Technology, the ISO certification organization and several other efforts also are out there muddying the supply chain waters.

To help add some clarity to this growing body of water, NASA SEWP partnered with experts to compare the NIST and ISO standards.

Joanne Woytek, the program director for NASA SEWP, said this crosswalk effort will help agencies and vendors alike to have confidence in the technology products and services they are buying.

Read more at Federal News Network

Homeland Security Today

The Government Technology & Services Coalition's Homeland Security Today (HSToday) is the premier news and information resource for the homeland security community, dedicated to elevating the discussions and insights that can support a safe and secure nation. A non-profit magazine and media platform, HSToday provides readers with the whole story, placing facts and comments in context to inform debate and drive realistic solutions to some of the nation’s most vexing security challenges.

See Full Bio