A New Model for Supply Chain Cybersecurity: Less Reporting, More Hands-on Help for the Most Vulnerable Links in the Chain

New advisory service from Sera-Brynn helps businesses with supply chain cybersecurity.

U.S. and international regulations demand businesses address cybersecurity throughout their supply chain. Sera-Brynn, LLC, a FedRAMP-authorized assessor and cyber risk management firm, has expanded services for clients to efficiently and effectively manage cyber risk in their supply chains.

“Supply chain partners are your best and worst friend. You rely on them, but they are often at the root of data breaches and compromises,” stated Heather Engel, Chief Strategy Officer at Sera-Brynn. “Effective cyber risk management cannot ignore the threat an unmanaged supply chain poses to the host organization, the public, and the government.”

Sera-Brynn’s cyber-focused advisory service targets compliance with:

Supply chain partners are your best and worst friend. You rely on them, but they are often at the root of data breaches and compromises. Effective cyber risk management cannot ignore the threat an unmanaged supply chain poses to the host organization, the public, and the government.

Heather Engel, Chief Strategy Officer, Sera-Brynn

FAR and DFARS The mandatory flow-down provision of the U.S. Government acquisition clauses, including Federal Acquisition Regulation 52.204-21 and Defense Federal Acquisition Regulation Supplement 252.204-7012 requires Defense contractors to impose government security and reporting requirements on subcontractors;

FedRAMP – There are detailed vendor management and acquisition requirements for Cloud Service Providers (CSPs) who are or would like to be part of the Federal marketplace;

Financial Services –  Requirements for managing third party service providers are built into the New York State Department of Financial Services cybersecurity rule, and the Financial Industry Regulatory Authority includes provisions in its cybersecurity checklist for third parties handling sensitive information; and

GDPR – the European Union’s General Data Protection Regulation (GDPR) has global reach and imposes penalties on companies that fail to secure their supply chain.

Sera-Brynn’s service brings visibility and standard processes to the supply chain manager with affordable solutions for clients of all sizes.

For more information, visit https://sera-brynn.com.

About Sera-Brynn

Sera-Brynn is a Payment Card Industry Qualified Security Assessor and FedRAMP Third Party Assessment Organization (3PAO) specializing in cyber risk management. Offering compliance and risk assessment, risk control, and incident response services, Sera-Brynn empowers clients to manage cyber risk and meet applicable and mandatory cybersecurity regulatory standards. Founded in 2011 by former members of the U.S. intelligence community, Sera-Brynn is ranked #9 worldwide on the Cybersecurity 500 list.

Media Contact

Colleen H. Johnson
colleen.johnson@sera-brynn.com​
​Sera-Brynn, LLC / Cyber Risk Management
5806 Harbor View Blvd., Suite 204
​Suffolk, Virginia 23435

Source: Sera-Brynn

Additional Links