← NIST CSF 2.0 in plain English

GV.SC-03

Govern / Cybersecurity Supply Chain Risk Management

Cybersecurity supply chain risk management is integrated into cybersecurity and enterprise risk management, risk assessment, and improvement processes.

Think of it likeIncluding service provider reviews in your regular home maintenance checks.

In plain English

The family makes sure that checking on the reliability of service providers is part of their regular home maintenance routine.