Latest Blogs

All Blogs »

Managing Vendors With Disparate Frameworks

February 27, 2017 | Vendor and Partner Management
By Josh More, IANS Faculty

Vendor due diligence becomes even more challenging when there are a variety of information security frameworks in play. In this Ask-an-Expert written response, IANS Faculty Josh More details two approaches to the problem: a formalized mapping process using the COBIT framework and an ad-hoc approach designed to prioritize the specific risks facing the organization. 



Please Login to continue

Related Research

4/19/2017 | Written AAE
Understanding the Australian Regulation’s ‘Two-Person Rule’ Requirement

4/14/2017 | Written AAE
Addressing PCI’s ‘One Primary Function’ Requirement

3/22/2017 | Written AAE
Setting Requirements for Vendors Storing Sensitive Data

3/8/2017 | Written AAE
Detailing Requirements for an IDAM System