As cyber threats become more sophisticated and complex, businesses need not only to ensure they are secure, but that their vital partners, suppliers and vendors are protecting themselves as well.
Contacts
Who should my main contact be with my vendor?
You should expect to have one individual at your vendor's company who is in charge of managing the risk to your organization's data. This person should be your point of contact if there is ever a problem and should be able to easily obtain relevant and important information at any point. He or she could be a lawyer, an IT security person, the chief information officer, or any number of people depending on how the company has decided to organize itself. You should be able to rely on this person to get all of the appropriate people together should a problem ever occur. This person should have specific insights into IT operations, security components, and elements of your contract.