SCRM @ Aerospace
Managing Supply Chain Risk across the Acquisition Lifecycle
Threats to supply chains continue to evolve. Aerospace is ahead of the threat, conducting independent research and analysis, program protection planning, criticality analysis, mitigations and countermeasures, and training and best practices to manage supply chain risk across systems lifecycles.
About This Portal
The Go-to for Actionable Supply Chain Information
The Aerospace Supply Chain Risk Management Capabilities Center is a comprehensive repository of information for the space enterprise and other civil and commercial industries to assist in the understanding of, and response to, the many threats to systems and operations related to their supply chains. On this site, you will find comprehensive information about supply chain threats, guidance and regulation, case studies and best practices, and descriptions of Aerospace services to help you in securing your supply chain.
SCRM Overview
With Innovation Comes an Expanding Threat Plane
Managing supply chain risk will become more critical as we evolve the infrastructure that enables critical national functions such as positioning, navigation, and timing (PNT) services; cargo, material, and passenger transport; and consumer and commercial banking services. Newly integrated technology – including space-based solar power, synthetic chemicals, precision medicine and robotic surgery, and 3-D and 4-D printing – will incorporate a range of component parts and processes, creating an even larger threat plane. Supporting supply chains will require a more deliberate and dedicated level of risk management than is currently practiced by government and industry.
SCRM Implementation Initiatives
Engaging the Widest Range of Stakeholders to Mitigate Risk
Supply chain threats have energized Congress, the White House, and executive agencies to impose requirements that demand insight into suppliers at all levels – not just first- and second-tier suppliers, but distributors and vendors across the full network that typically has not been understood. Aerospace provides tools, capabilities, and resources to assist stakeholders in engaging with suppliers at all levels to better understand and mitigate current and future risk.
SCRM History
Managing Risk in an Evolving Threat Environment
SCRM has traditionally focused on managing weaknesses in product lifecycles, such as: defects introduced through mistakes or negligence; failure in aging devices; market risk and resiliency issues from sole-sourced suppliers; long lead times; and counterfeit risk from relabeled, recycled, cloned, defective, or out-of-spec devices.
Increasingly, actors are entering supply chains through cyber networks. This insertion of malicious components and coding has caused billions to government and industry in mission failure, intelligence gathering, and extortion.
The Aerospace FFRDC
Providing Unparalleled, Independent, Objective Guidance to the Space Enterprise
Federally Funded Research and Development Centers (FFRDCs) are independent non-profits with competencies and capabilities critical to meeting strategic, long-term needs for engineering, research, development, and other analytic capabilities that cannot be met as effectively by U.S. Government or other private-sector resources.
Aerospace provides FFRDC services to multiple U.S. national security and civil space agencies, including NASA, NOAA, USGS, and NNSA.
SCRM Library Updates
Managing supply chain resilience assessment model-relevant factors and activities using an FCM-FBWM approach
Supply chain resilience is essential for companies to survive in today’s competitive market, as they face environmental and unforeseeable challenges in…
Same destination, different roadmaps: the journey to zero trust architecture
While all federal agencies are striving to reach the same place, no two agencies are taking the same path to…
President Biden Formalizes White House Council on Supply Chain Resilience
On June 14, 2024, President Biden issued an Executive Order on White House Council on Supply Chain Resilience (the “Order”). The Order,…
Executive Order on White House Council on Supply Chain Resilience
By the authority vested in me as President by the Constitution and the laws of the United States of America,…
The role of technology in supply chain risk management: Innovations and challenges in logistics
The paper explores the myriad of risks faced by modern supply chains, ranging from natural disasters and geopolitical tensions to…
Building resilient supply chains: Empirical evidence on the contributions of ambidexterity, risk management, and analytics capability
Supply chain disruptions are a major managerial issue due to their detrimental effects on businesses and supply chain networks. Organizations…
Recent SCRM News
Protecting Your Software Supply Chain: Assessing the Risks Before Deployment
Cybercriminals have recognized that instead of attacking an organization head-on, they can infiltrate through the software supply chain—like slipping counterfeit…
Cloudflare CDN flaw leaks user location data, even through secure chat apps
A security researcher discovered a flaw in Cloudflare’s content delivery network (CDN), which could expose a person’s general location by simply…
WH National Cyber Director Finalizing Software Liability Proposals
The outgoing White House national cyber director is highlighting the progress his office made over the last four years, while…
FBI, CISA say Chinese hackers are still lurking in US telecom systems
Leading U.S. cybersecurity agencies on Tuesday said that Chinese hackers likely still have access to critical telecommunications systems, and published…
Homeland Security Committee reveals Cyber Threat Snapshot on rising cyber threats from nation-states, hacker networks
The U.S. House Committee on Homeland Security published a new ‘Cyber Threat Snapshot’ examining growing threats posed by malign nation-states…
LastPass warns of fake support centers trying to steal customer data
LastPass is warning about an ongoing campaign where scammers are writing reviews for its Chrome extension to promote a fake…
SCRM Events
OSINT Unveiled: The Technology Behind the Intelligence – ODNI Edition
Feb 27, 2025 2:00 p.m. ET – Webinar Join us for a discussion on the evolving role of OSINT in national…
Federal Executive Forum Cybersecurity for Defense and Homeland Progress and Best Practices 2025
Government cybersecurity strategies are constantly evolving to address new threats. The Departments of Defense and Homeland Security prioritize proactive defense,…
Federal News Network’s Industry Exchange Cyber 2025
Jan 27, 2025 1:00 p.m. ET Webinar Cybersecurity requires constant vigilance but also continual evolution. Are you staying safe today…
Defend Against Ransomware Attacks Cyber Range Training
Tuesday, January 7, 2025 Time: 9:00 AM EST – 1:00 PM EST Location type: Virtual/Online Format: Webinar The Cybersecurity and…
Federal Executive Forum Zero Trust Strategies in Government Progress and Best Practices 2024
Dec 3, 2024 1:00 p.m. ET Type: Webinar How far have agencies progressed in their zero trust journey, and how have…
Cybersecurity in the cloud: Visibility, monitoring and compliance
Join us for a panel discussion on advancing cloud security where we’ll explore how agencies are strengthening their cybersecurity posture…