Effectively managing information security risk arising from third party relationships is an essential aspect of GRC capability that drives successful attainment of Principled Performance.
Effectively managing information security risk arising from third party relationships is an essential aspect of GRC capability that drives successful attainment of Principled Performance.
It is a key “play in the game” so OCEG and Hiperos have developed a Principled Performance Playbook to provide some essential guidance and tools to get started. Just like a football playbook, this document outlines the steps to take – or plays – and sets up the structure for assignment of the various tasks to those in your organization.
In this webinar, we will walk you through the plays that can be used in your third party risk assessment process for controlling information security risk.
Learning Objectives:
Define areas of information security third party risk
Identify key steps to take in assessing each party’s risk level
Demonstrate use of specific “plays” or tools provided to assist in assessing risk and assigning controls