A carregar...
Publicação
A Framework for Assessing the Supply Chain Cybersecurity Risk Management Maturity
| Nome: | Descrição: | Tamanho: | Formato: | |
|---|---|---|---|---|
| 1.51 MB | Adobe PDF |
Autores
Orientador(es)
Resumo(s)
Supply chains have developed into complex, multi-tiered global networks, creating challenges for companies to maintain full visibility and implement risk management across all levels. Attackers increasingly target third parties viewed as weak links, using them as entry points to infiltrate and spread throughout the network. This can lead to system downtime, exposure of sensitive information, and reputational damage. When one link in the chain is compromised, the entire network may be at risk, especially with today’s heightened connectivity between partners, making strong security measures more critical than ever. This study proposes a supply chain cybersecurity risk management maturity framework for organizations that want to improve transparency, alignment, and trust between suppliers, safeguard assets, and advance the maturity of their cybersecurity risk management process. While research has addressed these areas separately, a practical solution that incorporates all of these areas is hard to find. The framework is built on adaptable steps suitable for companies of any size or location, it integrates the SCOR Model as a reference aid in decision-making, a standards-aligned risk management process that incorporates maturity seals, an audit layer, and KPI-driven continuous monitoring. Through this integration, the framework delivers a consistent assessment baseline, transparent supplier evaluation, and an improvement roadmap to enhance supply chain cybersecurity risk management maturity. The framework was validated through evaluation by a specialist, whose feedback helped improve its adaptability across a wider range of contexts.
Descrição
Tese de mestrado, Segurança Informática, 2025, Universidade de Lisboa, Faculdade de Ciências
Palavras-chave
Supply chain Cybersecurity Risk Management Maturity Auditing