You're reading from Information Security Handbook Enhance your proficiency in information security program development

Product type Paperback

Published in Oct 2023

Publisher Packt

ISBN-13 9781837632701

Length 370 pages

Edition 2nd Edition

Concepts

Information Security

Author (1):

Darren Death

View More author details

Table of Contents (16) Chapters

Preface

1. Chapter 1: Information and Data Security Fundamentals

2. Chapter 2: Defining the Threat Landscape FREE CHAPTER

3. Chapter 3: Laying a Foundation for Information and Data Security

4. Chapter 4: Information Security Risk Management

5. Chapter 5: Developing Your Information and Data Security Plan

6. Chapter 6: Continuous Testing and Monitoring

7. Chapter 7: Business Continuity/Disaster Recovery Planning

8. Chapter 8: Incident Response Planning

9. Chapter 9: Developing a Security Operations Center

10. Chapter 10: Developing an Information Security Architecture Program

11. Chapter 11: Cloud Security Considerations

12. Chapter 12: Zero Trust Architecture in Information Security

13. Chapter 13: Third-Party and Supply Chain Security

14. Index

Why subscribe?

15. Other Books You May Enjoy

Integrating C-SCRM into security program and business activities

Integrating C-SCRM into existing organizational activities is critical for organizations seeking to maintain a secure supply chain. An organization can integrate C-SCRM into its activities through several key processes:

Risk management framework integration: An effective way of integrating C-SCRM into an existing risk management framework is to consider it a component of the overall risk to an organization. Extending the scope of risk assessments to include supply chain-related risks is essential. This requires identifying and assessing potential cyber threats that could impact the supply chain, including those related to vendors, suppliers, and third-party service providers.
Incorporation into procurement practices: Procurement practices play a significant role in managing supply chain risks. The procurement process should integrate considerations about potential cybersecurity risks. For example, the supplier...