Managing Cybersecurity Risks in the Supply Chain Quiz

Questions and Answers

PDF Questions PDF Answers

Which of the following is NOT a discipline or process that enterprises should consider when managing cybersecurity risks throughout the supply chain?

Information security

Procurement

Marketing (correct)

Software development

What is the purpose of defining explicit roles to bridge and integrate processes in managing cybersecurity risks throughout the supply chain?

To reduce costs

To comply with regulations

To increase efficiency

To improve communication (correct)

When should enterprises perform C-SCRM activities?

During the acquisition process only

During the SDLC process only

As a part of acquisition, SDLC, and broader enterprise risk management processes (correct)

During broader enterprise risk management processes only

What do embedded C-SCRM activities involve?

All of the above

What is the purpose of an orchestrated approach to managing cybersecurity risks throughout the supply chain?

All of the above