Alphabet Soup: Assessing Your High Risk Vendors

ISSA Theater 2 - Privacy, Regulation and Compliance (Cloud) Theatre

Thu 18th Oct 01:00 to 01:50

Do you use third parties in your business? How do you trust but verify their security practices? Enter the world of third party audit reports (which is more like a bowl of Alphabet Soup) - We will go through an overview of what companies are using to obtain assurance over the security practices of their vendors. We will talk about SOC 1, SOC 2, SOC 3, SSAE 18, HITRUST, ISO 27001 and other assessments and audits along with the pros and cons of each so you can use them effectively in your vendor management processes. We will also discuss the pros and cons of each report and how to interpret the results.


Photo Speaker Name Profile
David Schroth David Schroth View Profile