S. Slapnicar, T. Vidmar, and E. Tsen, “Process Theory of Supplier Cyber Risk Assessment”, AJIS, vol. 29, July 2025.