THIRD PARTY RISK ASSESSMENT

PROCESS DEVELOPMENT & IMPLEMENTATION

constantly changing security landscape

what data is at risk and how does it flow

data collection, storage, transmission, use, destruction

changing security landscape

create a schedule for vendor reassessment

mitigate problems

resource constrained teams may be unable to keep up

Crisis Management

how would you respond to an attack? do you have a plan in place?

compliance initiatives

ensure every system, vendor, employee is compliant

 privacy  process

make sure no bad actors can log into your system

Security awareness

security and risk education policy for employees