Contracts, Compliance, and Confusion: Addressing Cybersecurity in Third Party Vendor Contracts

No ratings

Presented at CyberSecure 2015 by

Carr Davis

Here’s your scenario: A security breach leads to tension with your business partners and vendors. Do you have the time and resources for a one size fits all solution like ISO 27001? Or is there another more targeted, personalized way to be audit ready? This session will delve into one of the trickiest areas of cybersecurity – your business relationships – and how they are impacted by and contribute to data breach. Bring your pain points to the table and be ready to discuss your approaches to the pre-RFP Process, ongoing compliance needs, and supply chain management. From there, the session will turn to possible solutions including: • • Exploring alternatives to pricey third party auditors • • Making progress and minimizing the impact of inevitable contract delays • • Crafting cost effective contracts that address security concerns using prioritization instead of standardization (protect the crown jewels)