ICT Supply Chain Risk Management Working Group Announces New Members and Working Group

Government and industry members of the Information and Communications Technology (ICT) Supply Chain Risk Management (SCRM) Working Group met today to announce new members and define the 2022 work plan of the working group.

Co-chaired by the Cybersecurity and Infrastructure Security Agency (CISA) and the Information and Communications Technology Sector Coordinating Boards, the working group is a public-private partnership focused on identifying and addressing the unique challenges facing an impact on global ICT supply chains. The three new government partners announced at the meeting include the Small Business Administration (SBA), the National Association of State Procurement Officials and the National Association of State Chief Information Officers. The new members will help develop concrete solutions to improve the resilience of the ICT supply chain.

“Given the risks facing the country’s supply chains, particularly with regard to hardware and software, the work of the task force remains essential,” said Bob Kolasky, Deputy Director of CISA and Co-Chair of the ICT SCRM working group. “One of our goals this year is to extend the usefulness of the Task Force’s work to a wider audience. In this context, we are delighted that representatives of key state organizations and the SBA are joining the working group. They will bring a new perspective to our work and help connect efforts to a larger community. “

In addition to announcing new members, the working group voted to approve the creation of a new working group for the third year. The Hardware BOM working group will focus on identifying the appropriate information for the development of a reference hardware BOM model that organizations can use when purchasing or deploying ICT products.

The working group also voted to continue ongoing efforts for two existing working groups:

  • The Small and Medium Business Working Group, which engages the small and medium business community to understand their needs and tailor the work group’s products to meet their needs.
  • The Product Marketing Working Group (formerly Accelerating Product Use), which engages with stakeholders to ensure that the working group’s products provide useful and meaningful information.

Over the next few months, the working group plans to define two additional areas of focus to address ICT supply chain risks related to the promotion of software assurance and the utility of the nomenclature of software in the ICT community. Other efforts include expanding relationships with international partners, new sectors and stakeholders.

“For more than three years, the working group has served as a model for effective collaboration between industry and governments to identify – and mitigate – the very specific supply chain challenges facing global ICT companies.” said Robert Mayer, senior vice president, Cybersecurity and Innovation. , USTelecom and co-chair of the working group. “This partnership is more critical than ever. We strive to bring together supply chain experts from diverse organizations to improve resilience through practical, actionable and profitable solutions for businesses. Over the coming year, we will identify supply chain activities across multiple departments and agencies to avoid duplication of efforts and to use our collective resources in the most efficient way possible.

“The launch of the task force in December 2018 was premonitory in identifying the need for collaboration between government and industry to achieve the reliable, secure and reliable global ICT supply chains needed to protect security. national and economic affairs of the United States, ”said John Miller, vice president of ITI. Politician and lead lawyer and co-chair of the working group. “The broadening of the working group’s participation to the entire business and government community reinforces the broad resonance of our important work towards a fully comprehensive approach that brings concrete solutions to the challenges of supply chain security. ICT supply in today’s dynamic environment. We look forward to continuing the Task Force’s critical mission into 2022 and beyond and continuing to address our common supply chain challenges. “

Since its inception, the working group has proven to be crucial for the risk management activity of the public-private supply chain. In August 2021, it was extended until July 31, 2023 to continue exploring ways to forge partnerships, develop new resources and collectively improve the resilience of the ICT supply chain.

To learn more about ICT supply chain risk management, please visit CISA.gov/ict-scrm-task-force.

Learn more about CISA

Comments are closed.