Reviewing suppliers and understanding what they bring to the table is important to any business especially if they have any effect on information security.
Suppliers are an important and often crucial part of any business they allow the outsourcing of key areas and can be a major contributor. Issues can also be raised from suppliers; they can add inherent risk in various ways to a business making an incident more likely or omitting support they offer.
Reviewing what they offer, businesses do not often consider the terms of service under review and looking at what is agreed upon. IT providers could in contracts use language or leave out certain commitments if a security incident occurs you could find yourself hung out to dry by your provider and left to resolve the issue without support from the provider.
Data controller and processor, understanding what is agreed to but also reviewing the current landscape and requiring more in-depth assessments to be conducted on suppliers is important. You need to do your part to ensure contracts are met and any data that is pass on is controlled and secure.
Understanding what the relationships are with suppliers and having open frequent communication is important. Surrounding your business with good suppliers is creating your business support system. Creating resilience in your business by choosing the best support does reduce your risk to external threats.
Our active fundraising for Air Ambulance is found here we appreciate any donation.
Worried about your company’s computer security? Click here for more information.