Latest Blogs

All Blogs »

Managing Vendors With Disparate Frameworks

February 27, 2017 | Vendor and Partner Management
By Josh More, IANS Faculty

Vendor due diligence becomes even more challenging when there are a variety of information security frameworks in play. In this Ask-an-Expert written response, IANS Faculty Josh More details two approaches to the problem: a formalized mapping process using the COBIT framework and an ad-hoc approach designed to prioritize the specific risks facing the organization. 



Please Login to continue

Related Research

5/23/2017 | Faculty Report
Negotiate an Effective Incident Response Retainer

5/4/2017 | Written AAE
Allocating the Right Resources for SOX Compliance

5/3/2017 | Written AAE
Deploying the Right Controls for DFARS Compliance

4/25/2017 | Written AAE
Selecting a GRC Tool

4/19/2017 | Written AAE
Understanding the Australian Regulation’s ‘Two-Person Rule’ Requirement