An error occurred:
Close sidebar
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: releases-v2025.11.1 - rmfrev5
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: releases-v2025.11.1 - rmfrev5
Open sidebar
Navigate
Top
Search
CCIs (
5137
)
Pages (
169/172
)
CCIs
Number
Definition
Status
Related
CCI-005072
Develop a plan for managing supply chain risks associated with the research and development, design, manufacturing, acquisition, delivery, integration, operations and maintenance, and disposal of the following systems, system components, or system services.
Draft
SR-2
CCI-005073
Defines the systems, system components, or system services that a plan for managing supply chain risks are developed.
Draft
SR-2
CCI-005074
Review and update the supply chain risk management plan on an organization-defined frequency, or as required, to address threat, organizational or environmental changes.
Draft
SR-2
CCI-005075
Defines the frequency for reviewing and updating the supply chain risk management plan.
Draft
SR-2
CCI-005076
Protect the supply chain risk management plan from unauthorized disclosure and modification.
Draft
SR-2
CCI-005077
Establish a supply chain risk management team consisting of organization-defined personnel, roles, and responsibilities to lead and support the following SCRM activities.
Draft
SR-2(1)
CCI-005078
Defines the supply chain risk management activities that will be led by a supply chain risk management team consisting of organization-defined personnel, roles, and responsibilities.
Draft
SR-2(1)
CCI-005079
Defines the personnel, roles, and responsibilities who lead and support organization-defined supply chain risk management activities.
Draft
SR-2(1)
CCI-005080
Establish a process of processes to identify and address weaknesses or deficiencies in the supply chain elements of organization-defined system or system components in coordination with organization-defined supply chain personnel.
Draft
SR-3
CCI-005081
Defines the system or system processes which establish a process or processes for identifying and addressing weaknesses or deficiencies in the supply chain elements.
Draft
SR-3
CCI-005082
Defines the supply chain personnel who, in coordination, establish a process or processes for identifying and addressing weaknesses or deficiencies in the supply chain elements.
Draft
SR-3
CCI-005083
Establish a process of processes to identify and address weaknesses or deficiencies in the processes of organization-defined system or system components in coordination with organization-defined supply chain personnel.
Draft
SR-3
CCI-005084
Defines the system or system processes which establish a process or processes for identifying and addressing weaknesses or deficiencies in the supply chain processes.
Draft
SR-3
CCI-005085
Defines the supply chain personnel who, in coordination, establish a process or processes for identifying and addressing weaknesses or deficiencies in the supply chain processes.
Draft
SR-3
CCI-005086
Employ the following controls to protect against supply chain risks to the system, system component, or system service.
Draft
SR-3
CCI-005087
Limit the harm or consequences from supply chain-related events.
Draft
SR-3
CCI-005088
Defines the supply chain controls employed for protecting against supply chain risks to the system, system component, or system service.
Draft
SR-3
CCI-005089
Document the selected and implemented supply chain processes and controls in security and privacy plans, supply chain risk management plan, or organization-defined document.
Draft
SR-3
CCI-005090
Defines the document which contains supply chain processes and controls.
Draft
SR-3
CCI-005091
Employ a diverse set of sources for the following system components and services.
Draft
SR-3(1)
CCI-005092
Defines the system or system components and services which employ a diverse set of sources.
Draft
SR-3(1)
CCI-005093
Employ the following controls to limit harm from potential adversaries identifying and targeting the organizational supply chain.
Draft
SR-3(2)
CCI-005094
Defines the controls to be employed to limit harm from potential adversaries identifying and targeting the organizational supply chain.
Draft
SR-3(2)
CCI-005095
Ensure that the controls included in the contracts of prime contractors are also included in the contracts of subcontractors.
Draft
SR-3(3)
CCI-005096
Document valid provenance of the following systems, system components, and associated data.
Draft
SR-4
CCI-005097
Monitor valid provenance of the following systems, system components, and associated data.
Draft
SR-4
CCI-005098
Maintain valid provenance of the following systems, system components, and associated data.
Draft
SR-4
CCI-005099
Defines the systems, system components, and associated data for documenting, monitoring, and maintaining valid provenance.
Draft
SR-4
CCI-005100
Establish and maintain unique identification of the following supply chain elements, processes, and personnel associated with the identified system and critical system components.
Draft
SR-4(1)
CCI-005101
Defines the supply chain elements, processes, and personnel associated with organization-defined systems and critical system components for establishing and maintaining unique identification.
Draft
SR-4(1)
Prev
1...
165
166
167
168
169
170
171
172
Next