Description
By Ruth Ginzberg CTPS, Senior IT Procurement Specialist, University of Wisconsin System Administration
Virtual Meeting date - January 16, 2019, 12:00 pm - 1:00 pm EST on the Zoom.us platform.
Members - $10, Nonmembers $40
3rd party vendors are involved in roughly 60% - 70% of all data breaches. If you are relying on your legal counsel, procurement department, or I.T. department to lock down the security risks in your cloud contracts, then you probably have security vulnerabilities you don't realize you have. This is true regardless of how good your cloud supplier’s technical security controls are. The contract itself and its administration can create vulnerabilities.
This goes beyond, "Do I own my own data?" or "Did we attach our company’s cloud contract rider?" Good cloud contracts require information security professionals' involvement in all aspects of their creation, administration, and enforcement. Managing 3rd party risk in the cloud requires the application of supply chain management risk reduction practices to the cyber sphere.
- Understand how unnecessary risks can be introduced during the contracting process
- Identify the most important security risks in existing contracts in your organization
- Develop strategies to transfer, mitigate, avoid or eliminate those risks
Reviews
There are no reviews yet.