πΌ SR-6 Supplier Assessments and Reviews (M)(H)
- Contextual name: πΌ SR-6 Supplier Assessments and Reviews (M)(H)
- ID:
/frameworks/fedramp-high-security-controls/sr/06 - Located in: πΌ Supply Chain Risk Management
Descriptionβ
Assess and review the supply chain-related risks associated with suppliers or contractors and the system, system component, or system service they provide [FedRAMP Assignment: at least annually].
SR-6 Additional FedRAMP Requirements and Guidance:
Requirement: CSOs must ensure that their supply chain vendors build and test their systems in alignment with NIST SP 800-171 or a commensurate security and compliance framework. CSOs must ensure that vendors are compliant with physical facility access and logical access controls to supplied products.
Similarβ
- Sections
/frameworks/nist-sp-800-53-r5/sr/06
- Internal
- ID:
dec-c-4516a0a7
- ID:
Similar Sections (Take Policies From)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ NIST SP 800-53 Revision 5 β πΌ SR-6 Supplier Assessments and Reviews | 1 |
Similar Sections (Give Policies To)β
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|---|---|---|---|
| πΌ FedRAMP Moderate Security Controls β πΌ SR-6 Supplier Assessments and Reviews (M)(H) |
Sub Sectionsβ
| Section | Sub Sections | Internal Rules | Policies | Flags |
|---|