Managing Risks in the Supply Chain
12.30 – 13.30 Thursday 22nd February 2024
Steven Connors, Prism RA
12.30 – 13.45 Thursday 22nd February 2024 via Zoom
Steve Connors, Prism RA
From a management perspective, securing the supply chain presents organisations with two key issues; how to ensure a cost effective and resilient supply of goods and services, and how to manage the digital risk associated with this activity. In the increasingly interconnected world of modern business, companies often integrate elements of their data and systems with their suppliers.
Suppliers can pose various risks to an organisation's cyber security, for example in terms of:
- Allowing third-party access to an organisation's systems, could create a "back door" if not well managed and activity monitored.
- Suppliers could have access to and store the personal data or intellectual property of a client organisation either intentionally or unintentionally.
- If the supplier's systems are compromised, it would increase the opportunity for phishing attacks, viruses or other malware originating from the supplier's systems.
Whilst we can outsource the responsibility of performing an activity, we can’t outsource the Accountability!
Steve’s presentation will cover:
- What do we outsource?
- What are the key risks?
- How do we manage the risks?
Please note, for those members who hold an ISACA certification, attendance for the full session provides 1 CPE.