Sorry, you need to enable JavaScript to visit this website.
U.S. flag

An official website of the United States government

Dot gov

The .gov means it’s official.

Federal government websites often end in .gov or .mil. Before sharing sensitive information, make sure you’re on a federal government site.

Https

The site is secure.

The https:// ensures that you are connecting to the official website and that any information you provide is encrypted and transmitted securely.

Ransomware Risk Management Profile Open for Comment

Ransomware can attack organizations of all sizes from any sector. Review and provide feedback through September 11 on a Cybersecurity Framework profile that will help you gauge your organization's readiness.

Ransomware

NIST Wants Your Feedback on Using CSF 2.0 to Improve the Management of Emerging…

NIST wants to hear from you on a new Quick Start Guide to manage cyber risks. Comments close September 21.

Cybersecurity

Cyber Supply Chain Request for Comment

NIST wants to hear from you on Secure DevSecOps Practices. The final document will expand upon the SSDF, which NIST released in 2022. The comment period ends September 12.

Cyber Risk Management
  • 0
  • 1
  • 2

NTIA’s Communications Supply Chain Risk Information Partnership (C-SCRIP)

Welcome to the Communications Supply Chain Risk Information Partnership (C-SCRIP). C-SCRIP is a program designed to share supply chain security risk information with trusted communications providers and suppliers. Read more

C-SCRIPs clr_0
Join our mailing list to receive email notifications of C-SCRIP news alerts and events.
Sign me up!

What’s New

C-SCRIP Hosts First Webinar on NTIA’s High-Speed Internet Grant Programs and the NIST Cybersecurity Framework

The Communications Supply Chain Risk Information Partnership (C-SCRIP) held its first webinar for stakeholders on Monday, August 8. This program featured… read more.

NTIA Launches C-SCRIP Information-Sharing Program

This month, NTIA’s Communications Supply Chain Risk Information Partnership (C-SCRIP) is beginning a broad public outreach program by sending out its first… read more.

For previous news and blogs on supply chain risk management, visit the archive.

Cyber Alerts

cyber alert icon

National Cyber Awareness System (NCAS) Sign-Up

Provide timely information about current security issues, vulnerabilities, and exploits.
click hand icon

FCC Secure and Trusted Communications Networks Reimbursement Program

FCC Adds Certain Kaspersky Software Products to the Covered List

The FCC has announced the addition of cybersecurity and anti-virus software produced or provided by Kaspersky Lab, Inc., together with all affiliates, subsidiaries, and parent companies (Kaspersky), to the list of communications equipment and services (Covered List) that have been determined to pose an unacceptable risk to the national security of the United States or the security and safety of United States persons.

Secure and Trusted Communications Networks Reimbursement Program Report

(Submitted to the Senate Committee on Commerce, Science, and Transportation House of Representatives Committee on Energy and Commerce on January 10, 2023)

FCC Announces Supply Chain Reimbursement Program Approved Applications

(July 18, 2022)