Vendor Cyber Risk: How you can use a risk management program to improve security culture
08 Mar 2023
Cloud & Cyber Security Expo Keynote Theatre
The expanse of our company information systems is widening in the wake of post-pandemic remote and hybrid work cultures. Digital transformation is also in full force to ensure businesses stay competitive and streamline their operations. Which means the adoption of cloud-based technologies, third-party services and applications is greater than ever.
The amount of vendor technologies and integrations now littering our IT ecosystems has increased our attack surface exponentially, which exposes us to a huge amount of additional risk. The question is, how can we keep on top of this risk and could we use it to advocate best practice and improve our security culture?
This talk will cover
● Third-party vendor cyber-attacks and the impact of not having a third-party risk management (TPRM) program;
● How to implement a basic vendor screening program using vendor surveys, risk collection, risk analysis and business advisory;