With cloud services now a normal part of business how does your organization handle being at fault when one of your third parties is breached? Properly vetting vendors and third parties is increasingly important to minimize the likelihood of that happening. We’ll explore the current and future state of third party risk management including: how to squeeze vendors for information they might not want to give you, what to do if you are the service provider getting questions, and how to plan for a breach of your information from a third party.
Currently an InfoSec director with a focus on incident response, awareness, and vendor risk, Dan has been traversing tracts of technology for over 20 years. After dabbling in diversions from design to development, Dan settled into scrutinizing suspect security standards. Aside from alliteration, Dan enjoys spending time with his family, building & breaking things.