Supply chain security

Management of information security risks associated with suppliers, contractors, and third parties that have access to the organization's data, systems, or infrastructure. ISO 27001 includes specific controls for supplier relationships.