In this webinar, we will explore the evolution and significance of vendor security questionnaires in today's cybersecurity landscape. The discussion will address common pain points organizations face when dealing with these questionnaires, such as their complexity and time-consuming nature and how to deal with a vendor who refuses to complete the questionnaire. Despite these challenges, vendor security questionnaires play a crucial role in mitigating vendor risk, particularly in the wake of numerous supply chain attacks and heightened cyber liability insurance requirements. We will also offer practical strategies for managing and streamlining the process of handling these daunting questionnaires, both when sending them and receiving them, helping organizations ensure robust vendor security and compliance.
Derek Boczenowski is SVP of IT Audit with Compass IT Compliance. Derek has over 20 years of IT experience in a variety of vertical markets, including financial services, higher education, and state/local government. Prior to joining Compass IT Compliance, Derek was the VP of Technology for a credit union in Massachusetts with approximately $700M in assets under management. With an MBA in Technology Management as well as industry leading certifications, such as being a Certified Information Systems Auditor (CISA), Qualified Security Assessor (QSA), Certified Information Security Manager (CISM), and Certified Data Privacy Solutions Engineer (CDPSE), Derek works with clients of all sizes and in all vertical markets to help them identify gaps in their IT security strategies and provide relevant, attainable solutions to ultimately mitigate their overall risk. Derek has spoken at numerous conferences throughout his career, including the Fiserv national conference and New York Banker’s Association Annual Meeting, and is recognized as a thought leader in the field of information technology and information security.
CJ Hurd is SVP of the Virtual Chief Information Security Officer (CISO) program with Compass IT Compliance. CJ holds over 20 years of experience across the information technology and cybersecurity landscape. He retired from the Coast Guard in 2018 after 21 years of active-duty service, where he was named the Coast Guard's Information Security Officer of the year in 2015, 2016, and 2017, as well as being named the Department of Homeland Security’s Information Security Officer of the year in 2016. CJ holds the Certified Information Systems Security Professional (CISSP) and Certified Data Privacy Solutions Engineer (CDPSE) certifications. In his role at Compass IT Compliance, CJ leads a team of Virtual CISOs that work with organizations of all sizes and across varying industries to develop, implement, enhance, and manage their cybersecurity programs. Serving as an organization’s Virtual CISO, members of CJ’s team oversee the strategic and operational aspects of the Information Security Program as well as work to identify and remediate realized or potential security threats within an organization’s environment.
Topic: Nobody Is Exempt from Vendor Security Questionnaires
Time: Oct 17, 2024 01:00 PM Eastern Time (US and Canada)