Presented by Bob Martin, MITRE
Event Page - [ Ссылка ]
The trustworthiness of supply chains is at the center of many of today’s global security challenges. This presentation explores the details of System of Trust (SoT), a community effort to develop and validate a process for integrating evidence of the organizational, technical, and transactional trustworthiness of supply chain elements for decision makers dealing with supply chain security. This framework defines, aligns, and addresses the specific concerns and risks that stand in the way of organizations’ trusting suppliers, supplies, and service offerings. Importantly, the framework offers a comprehensive, consistent, and repeatable methodology that is based on decades of supply chain security experience, deep insights into the complex challenges facing the procurement and operations communities, and broad knowledge of the relevant standards and best practices. By creating and curating a community-enabled structured corpus of risks about trusting organizations, products, and components, and service offerings that can be adopted, taught, and utilized by any organization involved in a supply chain, SoT offers a framework for focusing concise and rapid attention onto those risks most relevant and actionable to the parties involved in exchanging goods and services. This is comparable to how MITRE’s ATT&CK framework enables discourse and synergies in the cyber risk domain.

свернуть