Supply Chain Cyber Security Industry Coordination


The Industry Organizations Collaboration Effort

The NATF and other industry organizations are working together to provide a streamlined, effective, and efficient industry-accepted approach for entities to assess supplier cyber security practices. The model, if applied widely, will reduce the burden on suppliers so their efforts with purchasers can be prioritized and entities can be provided with more information effectively and efficiently. The industry organizations collaboration effort is focused on improving cyber security, and assisting registered entities with compliance to regulatory requirements.

Each of the industry organizations and many individual entities are working on solutions for various stages of the supply chain cyber security risk assessment lifecycle. These solutions are brought together in this effort to provide a cohesive approach. This approach may change over time as it matures but staying cohesive will be key to maintaining streamlined effective and efficient cyber security.

This website provides information on the approach (also referred to as the “model”), projects/activities that have been accomplished, and projects/activities in progress, upcoming presentations, links and contact information, and recent news. 

Upcoming Meetings and Activities

March 23-May 18 - NERC Supply Chain Working Group Webinar Series
Weekly on Monday at 1:00PM ET

  • Supply Chain and Risk Considerations for Open Source Software (March 23)
  • Supply Chain Cyber Security Risk Management Lifecycle (March 30)
  • Vendor Identified Incident Response Measures (April 6)
  • Secure Equipment Delivery (April 13)
  • Vendor Risk Management Lifecycle (April 20)
  • Procurement Language (April 27)
  • Frequently Asked Questions: Small Group Advisory Sessions (May 4)
  • Provenance (May 11)
  • Risks Related to Cloud Service Providers (May 18)

Expand all

Collapse all

Announcements (View All)

February 03, 2020

NATF Launches Industry Coordination Webpage

Today, the NATF launched the “Supply Chain Cyber Security Industry Coordination” web page under a new “Industry Initiatives” section of the site.  The supply chain cyber security industry coordination page provides information on the collaborative work conducted by NATF subject-matter experts, industry organizations (including trade and forums), key suppliers, and third-party assessors on this important topic.

Read More