>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

PE-23Facility Location

>Control Description

Enterprises should incorporate the facility location (e.g., data centers) when assessing risks associated with suppliers. Factors may include geographic location (e.g., Continental United States [CONUS], Outside the Continental United States [OCONUS]), physical protections in place at one or more of the relevant facilities, local management and control of such facilities, environmental hazard potential (e.g., located in a high-risk seismic zone), and alternative facility locations. Enterprises should also assess whether the location of a manufacturing or distribution center could be influenced by geopolitical, economic, or other factors. For critical vendors or products, enterprises should specifically address any requirements or restrictions concerning the facility locations of the vendors (or their upstream supply chain providers) in contracts and flow down this requirement to relevant sub-level contractors.

>Cross-Framework Mappings

SCF

TPM-04.4
Compare
BCD-09
Compare
BCD-08
Compare
SEA-15
Compare
PES-12
Compare
PES-01
Compare

Ask AI

Configure your API key to use AI features.