U.S. flag

An official website of the United States government

Dot gov

The .gov means it's official.
Federal government websites often end in .gov or .mil. Before sharing sensitive information, make sure you're on a federal government site.


The site is secure.
The https:// ensures that you are connecting to the official website and that any information you provide is encrypted and transmitted securely.

Manage Your Grant

CISA Advisory: Supply Chain Essentials Guide & Other Resources

Date: Tuesday, May 5, 2020
Source: U.S. Department of Homeland Security, Intergovernmental Affairs

As we continue to respond as a nation to coronavirus (COVID-19), we must remain vigilant of adversaries seeking to target our critical systems and disrupt our vital supply chains.

Now more than ever, resilient critical infrastructure is imperative for public health and safety and community well-being. One of the Cybersecurity and Infrastructure Security Agency’s (CISA) top priorities is securing the global Information and Communications Technology (ICT) supply chain. Every day, ICT systems —those hardware, software, and services critical to communicating — support a broad range of critical infrastructure activities that collectively enable the provisioning of National Critical Functions (NCFs), such as generating electricity, operating hospitals, and supplying clean water. ICT products and services also provide remote access into work environments, e-Learning capabilities, and mobile computing. If vulnerabilities in the ICT supply chain are exploited, the consequences can affect all users of that technology or service.

CISA has published several resources on ICT supply chain risk management, to include a new ICT Supply Chain Essentials guide, to help partners and stakeholders deal with managing risks to their ICT supply chains. Read, download, or share these resources to help raise awareness.

For information on COVID-19, please visit www.cisa.gov/coronavirus. To learn more about ICT supply chain risk management and to view online resources, check out our latest CISA blog post or visit www.cisa.gov/nrmc-scrm.