Two-thirds of data breaches occur due to an insecure or poorly managed third-party relationship. Gaining control over your network of vendors is a critical risk activity. Join Alex Hollis, SureCloud’s GRC Practice Director as he discusses efficient and effective information gathering from third parties.
The session will cover:
•How to evaluate your information needs
•Prioritizing, planning and structuring the information gathering
•Use of categorization, tiering and risk scoring
•Building the question library
•Reducing the manual administrative burden from the system
•Reducing “assessment fatigue” - The human element of answering questions
Alex has over 16 years’ experience in IT, mobile technology and software development. He has spent the last seven years specializing in governance, risk, and compliance (GRC).