The U.K.’s National Cyber Security Centre (NCSC) published guidance offering practical steps to assist medium to large organizations in more confidently assessing and strengthening their supply chain cybersecurity.

Supply chain cybersecurity is a critical issue for organizations of all sizes. More than half of companies surveyed worldwide reported that a vendor or customer in their supply chain has been impacted by ransomware. Consequently, NCSC’s latest guidance describes typical supplier relationships and ways organizations are exposed to vulnerabilities and cyber attacks via the supply chain. The NCSC also defines expected outcomes and key steps to help you assess your supply chain’s approach to cybersecurity. Lastly, the guidance breaks down the assessment into five sections: Before you start; Develop an approach to assess supply chain cybersecurity; Apply the approach to new supplier relationships; Integrate the approach into existing supplier contracts; and, Continuously improve. Read more at NCSC.