Supply Chain & Supplier Relationships International standards & Best practices

Regarding supply chain management, if you want to deeply align with international standards and implement best practices, it may be useful to refer to the following standards:

NIST SP 800-161

[NIST SP 800-161], "Supply Chain Risk Management Practices for Federal Information Systems and Organizations", April 2015.

ISO/IEC 27036

[ISO/IEC 27036] - Information Security for Supplier Relationships (four parts): This standard focuses on managing security risks in supplier relationships, including risk assessment and security requirements for suppliers.

• [ISO/IEC 27036-1:2021]
• [ISO/IEC 27036-2:2022]
• [ISO/IEC 27036-3:2023]
• [ISO/IEC 27036–4:2016]

ISO 28002

• [ISO 28002:2011] - "Security Management Systems for the Supply Chain" provides a framework for establishing, implementing, and improving supply chain security management systems, addressing risks related to people, technology, and processes.

Source : ISO 28002:2011(en) Security management systems for the supply chain. Process Approach for Resilience Management in the Supply Chain