Third-Party Service Provider Diligence - Why Are We Doing It All Wrong?
via YouTube
AI, Data Science & Cloud Certificates from Google, IBM & Meta
UC San Diego Product Management Certificate — AI-Powered PM Training
Overview
Google, IBM & Meta Certificates – 40% Off
One plan covers every Professional Certificate on Coursera.
Unlock All Certificates
Explore a critical analysis of third-party service provider diligence practices in this 22-minute conference talk from BSidesLV 2014. Delve into the shortcomings of current approaches, examining published diligence, review processes, and scoping issues. Learn about the pitfalls of checkbox mentality and ineffective questioning techniques. Discover the importance of frequency, quantification, and psychometric considerations in assessments. Gain insights from a questionnaire case study and receive practical takeaways to improve your diligence processes. Challenge yourself to seek maturity in your approach and implement more effective third-party risk management strategies.
Syllabus
Introduction
What is published diligence
Review and testing
Scoping
Check boxes
Questions
Frequency
Quantify
Psychometer
Tools are good
Questionnaire case study
Takeaways
Ask yourself
Seek maturity
Outro