Supply chain security is the protection of assets and services during the entire life cycle of a system (design, development, construction, packaging, assembly, distribution, system integration, operational management, maintenance and decommissioning). The purpose of this document is to describe control objectives to protect confidentiality, integrity and availability (CIA triad) within the supply chain of network assets and services for Providers of Essential Services (AEDs) under the NIS legislation (Framework for the Security of Network and Information Systems of Public Interest for Public Safety, publication date 3/5/2019, NUMAC 2019011507).