>myctrl.tools
GitHub

PM-30(1)Suppliers Of Critical Or Mission-Essential Items

>Control Description

Identify, prioritize, and assess suppliers of critical or mission-essential technologies, products, and services.

>Supplemental Guidance

The identification and prioritization of suppliers of critical or mission-essential technologies, products, and services is paramount to the mission/business success of organizations. The assessment of suppliers is conducted using supplier reviews (see SR-06) and supply chain risk assessment processes (see RA-03(01)). An analysis of supply chain risk can help an organization identify systems or components for which additional supply chain risk mitigations are required.

>Related Controls

RA-3
SR-6