Recent high-profile security breaches have highlighted that information-related incidents in the supply chain can be just as damaging, if not more so, than those occurring within the organisation. The ISF’s Supply Chain Risk tools help organisations to identify information risk exposure in their supply chains and manage this risk in line with business appetite. Our Consultants will apply the ISF’s Supply Chain Information Risk Assurance Process and Supply Chain Assurance Framework to help your organisation:
- Identify instances of information risk exposure in existing supplier and third- party relationships
- Rank suppliers by the level of information risk identified and prioritise risk mitigation activity
- Identify enhancements to your ongoing vendor management processes to ensure that the information security controls required of every supplier are effective and in proportion to potential information risk exposure
- Implement processes for initial and periodic supplier controls assessments.
An ISF Consultant worked with a major industrial conglomerate to validate the organisation’s existing approach to managing supply chain risk against the ISF’s Supply Chain Assurance Framework. This resulted in a set of pragmatic recommendations for improvement that were linked clearly to business risk, along with a supporting roadmap for implementation.
Please fill out the form below to download a complimentary Executive Summary.