The Center for Internet Security, Inc. (CIS) Released Managing Cybersecurity Supply Chain Risks in Election Technology: A Guide for Election Technology

By | February 11, 2021

The Center for Internet Security, Inc. (CIS®) delivered Managing Cybersecurity Supply Chain Risks in Election Technology: A Guide for Election Technology Providers today in light of a need distinguished by the more extensive political decision local area. The guide is the first of its sort for the political decision innovation industry and proceeds with CIS’s methodology of giving online protection best practices to the political race local area.

The guide is expected to help political decision innovation suppliers in recognizing the main online protection store network hazards for their items and picking proper danger relief approaches for those dangers. It additionally helps in the turn of events and usage of an important inventory network hazard the board program.

The guide centers around the network protection hazards including equipment, firmware, and programming that are in the political race innovation inventory network. Notwithstanding IT that ships with political decision gear, this likewise incorporates remotely sourced instruments used to create equipment and programming in-house, for example, programming improvement units, code libraries, IT framework, and the devices used to make, oversee, and keep up that foundation.

The guide gives a bunch of aggressor objectives, the normal danger space, the most widely recognized assault types on stockpile chains, and an investigation of every political decision framework segment and the production network dangers affecting them with alleviation draws near.

Overseeing Cybersecurity Supply Chain Risks in Election Technology additionally incorporates a non-specialized outline of network protection store network hazard the executives, and depicts a 5-venture measure for distinguishing and overseeing providers dependent on a prioritization of danger to political race innovation items and administrations:

  • Identify and document supply chain, including asset identification
  • Assess risks to prioritize critical components and services as those facing the most significant threats
  • Assess your relationships with suppliers relative to criticality of products and services
  • Align and manage supplier relationships to manage risk
  • Conduct ongoing assessment and monitoring of key dependencies associated with critical components

Original Source :

https://www.cisecurity.org/press-release/center-for-internet-security-cis-releases-new-elections-technology-cybersecurity-supply-chain-guide/