Virtual Cyber & Technology Risk Management Forum

Vendor Management Summary

• Not all vendors are created equal! • How do you categorize different “levels” of vendors? • Do you need to collect the same information from different vendor levels? • Is it enough to simply gather documentation from vendors? • Do you need to ask the same questions from different levels of vendors? • What are the major components of ongoing vendor management? • How do you identify your riskiest vendor? • What is the ultimate decision to make from the ongoing vendor management process?

© 2020 SBS CyberSecurity, LLC www.sbscyber.com

35