This content is provided by LookingGlass.
In the wake of the SolarWinds incident and the new cybersecurity executive order, supply chain security is a hot topic in the federal government. But it’s not a new subject; entities like the National Institute for Standards and Technology have been developing guidance on this topic for years. It just never rose to the level of a critical concern until recently. Now federal agencies are scrambling to understand the attack surfaces of organizations they work with and networks they don’t own.
LookingGlass is a cybersecurity company that specializes in, among other things, supply chain risk management. They recently put out a whitepaper focused on supply chain risk, and it details four steps federal agencies can take to understand and mitigate their supply chain risks.
Take the adversary view
“One of the first steps to getting a handle on this issue is understanding who some of your critical suppliers are. You can’t protect what you don’t know about,” said Mary Yang, chief marketing officer at Looking Glass. “Agencies need to understand which vendors…
