November 14, 2018 | Tools & Templates | Vendor and Partner Management
A red flag approach can greatly speed up vendor assessments, while ensuring that critical issues are uncovered and addressed. In this Ask-an-Expert written response, IANS Faculty Josh More details the best questions for flagging vendors that transmit, process or store personally identifiable information (PII).
Third-party contractors can present a host of risks to an organization. In this Ask-an-Expert written response, IANS Faculty Josh More details a three-part process to help ensure such risks are reduced to acceptable levels.
This questionnaire is used during the due diligence phase of the third-party risk management process. It is developed based on the security and financial risks identified and quantified in the initial risk assessment, completed by vendors and then numerically scored by the third-party risk assessment team.
Many U.S. assumptions must be adjusted when assessing third parties overseas in areas like the EU, China, Russia or India. In this Ask-an-Expert written response, IANS Faculty Josh More explains the differences in terms of culture and expectations, and provides key questions to help assess overseas vendors appropriately.