Publicação
A Framework for Assessing the Supply Chain Cybersecurity Risk Management Maturity
| dc.contributor.author | Diogo,Rui Pedro Carvalho | |
| dc.contributor.institution | Faculty of Sciences | |
| dc.contributor.institution | Department of Informatics | |
| dc.contributor.supervisor | Respício,Ana Luísa do Carmo Correia | |
| dc.date.accessioned | 2026-02-04T15:30:04Z | |
| dc.date.available | 2026-02-04T15:30:04Z | |
| dc.date.issued | 2025 | |
| dc.description | Tese de mestrado, Segurança Informática, 2025, Universidade de Lisboa, Faculdade de Ciências | |
| dc.description.abstract | Supply chains have developed into complex, multi-tiered global networks, creating challenges for companies to maintain full visibility and implement risk management across all levels. Attackers increasingly target third parties viewed as weak links, using them as entry points to infiltrate and spread throughout the network. This can lead to system downtime, exposure of sensitive information, and reputational damage. When one link in the chain is compromised, the entire network may be at risk, especially with today’s heightened connectivity between partners, making strong security measures more critical than ever. This study proposes a supply chain cybersecurity risk management maturity framework for organizations that want to improve transparency, alignment, and trust between suppliers, safeguard assets, and advance the maturity of their cybersecurity risk management process. While research has addressed these areas separately, a practical solution that incorporates all of these areas is hard to find. The framework is built on adaptable steps suitable for companies of any size or location, it integrates the SCOR Model as a reference aid in decision-making, a standards-aligned risk management process that incorporates maturity seals, an audit layer, and KPI-driven continuous monitoring. Through this integration, the framework delivers a consistent assessment baseline, transparent supplier evaluation, and an improvement roadmap to enhance supply chain cybersecurity risk management maturity. The framework was validated through evaluation by a specialist, whose feedback helped improve its adaptability across a wider range of contexts. | en |
| dc.format | application/pdf | |
| dc.identifier.uri | http://hdl.handle.net/10400.5/116882 | |
| dc.language.iso | eng | |
| dc.subject | Supply chain | |
| dc.subject | Cybersecurity | |
| dc.subject | Risk Management | |
| dc.subject | Maturity | |
| dc.subject | Auditing | |
| dc.title | A Framework for Assessing the Supply Chain Cybersecurity Risk Management Maturity | en |
| dc.type | master thesis | |
| dspace.entity.type | Publication | |
| rcaap.rights | openAccess |
Ficheiros
Principais
1 - 1 de 1