Control: ism-1567; Revision: 2; Updated: Sep-22; Applicability: ALL; Essential Eight: N/A ​

Suppliers identified as high risk by a cyber supply chain risk assessment are not used.