Global Value Chain – An Expanded View of the ICT Supply Chain
• Podcast
Publisher
Software Engineering Institute
Topic or Tag
Listen
Abstract
Organizations “are concerned about the risks associated with information and communications technology (ICT) products and services that may contain potentially malicious functionality, are counterfeit, or are vulnerable due to poor manufacturing and development practices within the ICT supply chain. These risks are associated with the organizations’ decreased visibility into, understanding of, and control over how the technology that they acquire is developed, integrated and deployed, as well as the processes, procedures, and practices used to assure the integrity, security, resilience, and quality of the products and services.”
In this podcast, Edna Conway, Chief Security Officer, Global Value Chain and Cisco, and John Haller, a member of the CERT Cyber Assurance team, discuss the global value chain for organizations and critical infrastructures and how this expanded view can be used to improve ICT supply chain management, including risks to the supply chain.
About the Speaker
John Haller
John Haller is the Technical Manager of Cyber Assurance in the CERT program, at the CMU Software Engineering Institute (SEI). John is responsible for supporting a research and consulting portfolio focused on the security and resilience of the nation’s critical infrastructure, including defense assets and systems.
John has 20 years …
Read moreLisa R. Young
Lisa Young is an SEI alumni employee.
Lisa Young, Senior Member of the Technical Staff at the Software Engineering Institute at Carnegie Mellon University, has 20+ years of experience in the information technology and telecommunications industry. She holds the designation of Certified Information Systems Auditor (CISA), Certified Information Security …
Read more