Resources NIST SP 800-161r1-upd1: Cybersecurity Supply Chain Risk Management Practices for Systems and Organizations NIST Special Publication 800-53 / Risk Assessment (RA) Cybersecurity Supply Chain Risk Management C-SCRM Security and Privacy Controlsfor Information Systems and Organizations MITRE ATT&CK