Managing supply chain (SC) activities today is increasingly complex. One reason is the lack of an integrated means for security officers and operators to protect their interconnected critical infrastructures and cyber systems in the new digital era. The EU-funded CYRENE project aims to enhance the security, privacy, resilience, accountability and trustworthiness of supply chains, through the provision of a novel and dynamic Conformity Assessment Process (CAP) that evaluates the security and resilience of SC services. The CAP also assesses the interconnected IT infrastructures composing these services, and the individual devices that support the operations of the SCs. A new collaborative, multilevel, evidence-driven risk-and-privacy assessment approach will be validated in the scope of realistic scenarios/conditions comprising real-life SC infrastructures and end-users.