Deputy Chief, Computer Security Division
National Institute of Standards and Technology
Standards Area Lead for Cyber-Supply Chain Risk Management (C-SCRM)
Director for Developmental Test, Evaluation, and Assessments, Office of the Under Secretary of Defense for Research and Engineering
Department of Defense
Supply Chain Risk Management Service Owner (SCRM)
Federal cyber leaders and government agencies are pushing forward with Supply Chain Risk Management (SCRM) and Cybersecurity Supply Chain Risk Management (C-SCRM) initiatives to address vulnerabilities and prevent further incidents from compromising critical systems. But before those efforts can be successfully implemented, stakeholders must understand the full scope of current risks and learn new ways to combat threats. This panel will assess the current state of SCRM and C-SCRM while reviewing recent guidance from the White House, CISA and NIST to determine best practices for ongoing and future initiatives.