Use automation to uncover security gaps in your cyber supply chain and assure your day-to-day business activities.
Supply chain risk management is a major topic of concern for many security and compliance professionals. Managing the risks and vulnerabilities associated with your organization’s information and communications systems and services is a difficult task, and nearly impossible to manage without automation.
Now, Telos® introduces an Xacta 360 offering that is purpose-built to address this very specific need: Supply Chain Risk Management (SCRM). Xacta SCRM builds upon the information from authoritative supply chain risk management resources, like:
NIST SP 800-161
NIST Cybersecurity Framework
CISA ICT SCRM Working Group threat data
Automate processes for managing cyber supply chain risks
Conduct cyber supply chain impact assessments
Generate risk treatment plans for each risk element of a given supply chain
Create and maintain a cyber supply chain risk management plan for your organization
Categorize vendor profiles and associate them with their contracts and offerings
As is true with other Xacta 360 offerings for the NIST RMF and FedRAMP, Xacta SCRM works much like tax preparation software, helping the user navigate the end-to-end process.
Users are presented with a series of input screens that collect and organize all of the data needed for the cyber supply chain impact assessment. These screens are organized in a logical manner and prompt the user to answer questions and input the data needed to gain insights into cyber supply chain risks.
The offering generates the documentation (SCRM and risk treatment plans) as a byproduct of the process. You do not have to generate these documents from scratch at the end of the process. Xacta SCRM does this for you based on your inputs.