SCS 9001 is relevant for all ICT industry products, including software, hardware, and the services that connect to our global networks.
The Telecommunications Industry Association (TIA) announced the release of the world’s first supply chain security standard, SCS 9001™, which was created for the information and communications technology (ICT) industry. SCS 9001 is relevant for all ICT industry products, including software, hardware, and the services that connect to our global networks.
SCS 9001 is meant to verify end-to-end cyber and physical security across ICT network infrastructure and was created as a process-based standard with an independent audit and certification program for suppliers and service providers to verify that critical security controls and processes. It is built around a Quality Management System (QMS) which uses industry guidelines and best practices, including ISO 27001, the Prague Proposals, relevant NIST standards, and the CSIS Criteria for Security and Trust. Companies that use the standard will be provided with anonymized quarterly and annual security benchmark reports to track their performance against industry results.
SCS 9001 was officially approved for release on December 31, 2021 after 20 months of work by TIA’s QuEST Forum Supply Chain Security Working Group and its subcommittees.
Information on accredited audit and certification organizations for SCS 9001 can be found here, where you will see DQS as one of the five pilot Certification Bodies authorized. Contact us with if you are interested in participating in the pilot or wish to discuss certification services beyond the pilot timeframe.
Click to read the full press release by TIA.