Explore vendor security practices and risk assessment strategies in this conference talk from BSides Nashville 2017. Learn about the importance of vendor security, financial considerations, and effective security questioning techniques. Discover sample questions, data classification methods, and pre- and post-ranking processes for evaluating vendors. Gain insights into external questionnaires, risk ethics, and internal audit procedures. Acquire valuable tips for improving your organization's approach to vendor security management and risk mitigation.
Overview
Syllabus
Intro
Agenda
About us
Vendor Security
Money is what talks
Security questions
Sample questions
Data classifications
Pre and post rankings
External questionnaires
Risk ethics
Additional questions
Internal Audit
Tips