EY refers to the global organization, and may refer to one or more, of the member firms of Ernst & Young Global Limited, each of which is a separate legal entity. Ernst & Young Global Limited, a UK company limited by guarantee, does not provide services to clients.
Recent Searches
We present the ICT Supply Chain Toolbox Whitepaper - a valuable resource and benchmark for organizations facing supply chain security challenges.
Ensuring a secure Information and Communication Technology (ICT) supply chain is imperative for the European economy. With the adoption of the NIS2 Directive, the need for a uniform evaluation tool to assess supply chain security has become even more critical.
The NIS2 Directive responds to the escalating threats in the digital era and the surge in cyber attacks, making ICT supply chain security a paramount concern for day-to-day business activities.
Having in mind the above, we present the ICT Supply Chain Toolbox in this Whitepaper as a valuable resource and benchmark for organizations facing supply chain security challenges. Our focus is on shaping the future, and we believe the ICT Supply Chain Toolbox will enhance cybersecurity in the EU.
We have considered economic, regulatory, and technical aspects during our work and our aim is to shape the future rather than focus on the past. With this objective in mind, we present the ICT Supply Chain Toolbox, which we believe will strengthen cybersecurity in the EU.
Justyna Wilczynska-Baraniak
EY Polska, EY Law, Intellectual Property, Technologies and Personal Data, Partner, Attorney-at-law
Why you should read our Whitepaper?
Entities are required to consider the results of coordinated security risk assessments. However, it must be stressed that the NIS2 Directive does not provide any further explanation on how coordinated security risk assessment should be conducted, or what specific criteria should be considered.
For this reason, we decided to present ICT Supply Chain Toolbox as:
- An inspiration for supply chain security assessment
- A useful benchmarking tool for organizations in their day-to-day business activities
In this Whitepaper we refer to existing legal acts and ICT standards and address supply chain security challenges by establishing the ICT Supply Chain Toolbox.
To succeed, it is crucial to really focus on making the technical requirements clear and straightforward for everyone involved in the supply chain. It is important to create a detailed roadmap, which will allow to efficiently assess the supply chain security. Keeping things precise and transparent is key to making it all work well together.
Patryk Gęborys
Partner, Cybersecurity Team Leader
Direct at your mail
Subscribe EY newsletters
Summary
Download the EY Whitepaper: ICT Supply Chain Toolbox which will contribute to the discussion on ways of addressing supply chain security challenges and most importantly, will help various organizations to assess their own level of security in this area. The Whitepaper includes:
- Approaches to supply chain security and existing legal requirements
- Challenge 1: lack of unified, objective criteria for supply chain assessment and its solution
- Challenge 2: lack of regulatory clarity and its solution
- Challenge 3: lack of competitiveness and its solution
- Challenge 4: costs of NIS2 Directive implementation and its solution
- Technical and organizational measures in our proposal of a Supply Chain Toolbox
Related Articles
Poland: e-commerce in practice. EY Guide 2023
Take a look at EY Guide 2023 — Poland: e-commerce in practice. Our experts have analyzed all the crucial aspects which should be considered before commencing an online business in Poland, such as the legal form for conducting e-commerce, registration obligations, different channels of sale, necessary documents, seller’s obligations, consumer rights, IP rights and advertising, privacy and cookies, payment services, cybersecurity aspects and tax requirements.
EY Report: The future of cybersecurity in Europe. Challenges related to the NIS2 Directive.
Take a look at EY Report: The future of cybersecurity in Europe. The challenges related to the NIS2 Directive