>myctrl.tools
Preferences
Under active development Content is continuously updated and improved
Compare

SA-20Customized Development Of Critical Components

>Control Description

The enterprise may decide, based on their assessments of cybersecurity risks throughout the supply chain, that they require customized development of certain critical components. This control provides additional guidance on this activity. Enterprises should work with suppliers and partners to ensure that critical components are identified. Organizations should ensure that they have a continued ability to maintain custom-developed critical software components. For example, having the source code, build scripts, and tests for a software component could enable an organization to have someone else maintain it if necessary.

>Cross-Framework Mappings

SCF

TDA-12
Compare

Ask AI

Configure your API key to use AI features.