Cyber Risk Managenet Group Logo
  • Privacy Policy
  • Home
  • Approach
  • Virtual Workshop: How to implement a cyber risk roadmap for change and success
  • Services
  • Points of view
  • Contact us
  • Cookies policy
  • Events
  • CIISec Masterclass: Supply Chain Management
  • M&A – Cybersecurity and data privacy risks
  • Cyber Risk Webinar Series: Getting inside the mind of the Board
  • Cyber Risk Webinar Series: Building an enduring cyber risk management programme to see you through a crisis
  • Cybersecurity Diagnostic Assessment (CSDA)
  • Partners
  • CRMG Eye
  • The Cyber Risk Assessment Solution in Partnership with Galvanize
  • Why Organisations Will be Rushing to Protect Against DDoS
  • A Risk-based Approach to Cybersecurity: a masterclass on what to do and how to do it
  • ACC Cyber and Information Risk Panel Discussion
  • The Cybersecurity Landscape in 2021 – Through a cyber risk lens
  • Cyber Risk Webinar Series: Shifting cybersecurity from a compliance to a risk focus
  • From Paper to Practice: Effectively communicating and implementing your cybersecurity strategy
  • Geopolitics and Cyber-Attacks: What you need to know
  • Cyber Risk Webinar Series: Setting Up a Cyber Risk Assessment Capability That Works for all Stakeholders
  • About CRMG
  • Values
  • On-Demand: A Risk-based Approach to Cybersecurity: a masterclass on what to do and how to do it
    • Categories
  • Company News
  • Compliance
  • Crisis Management
  • Critical Asset Protection
  • Cybersecurity
  • Cybersecurity Strategy
  • Executive Management
  • Governance
  • Information Risk Assessment
  • Podcasts
  • Privacy & Data Protection
  • Risk
  • Third Party Assurance
    • 27.11.2019. Podcasts, Risk.
    by Nick Frost

    CRMG Podcast: How to Manage Third Party Risk When you Have Thousands of Suppliers

    Not so long ago, the idea of outsourcing critical business functions or IT systems to a third party supplier would have been off-limits for many organisations because of the level of risk involved. However today, the use of third party suppliers has increased exponentially, with many organisations outsourcing even core functions of their business. Why? Outsourcing can be financially attractive, efficient and provide a competitive advantage.
     
    In delegating key processes to third parties, organisations are potentially exposing themselves to huge amounts of risk, and while you might be able to outsource functions, you can never outsource business risks or reputation. It is common for information security to be last in the process of due diligence when selecting suppliers. So, when you have thousands of suppliers, and they have thousands of suppliers, how far should you go to assess and manage cyber risk?

    In this podcast, CRMG’s Nick Frost, Todd Wade and Andrew Wilson discuss the key risks associated with third party suppliers, how to manage the process of onboarding suppliers. and how to filter through suppliers to assess those most critical to your business. Our team also discuss the importance of managing the relationships with third party suppliers and the need for an exit strategy in the event of a split.

    About the Series

    This podcast series has been created by the CRMG team whose experience and expertise in cybersecurity and information risks spans many years, working at CISO-level for large reputable organisations. The podcasts cover topics that are at the heart of risk, providing knowledge sharing and insights from different professional experiences.

                                        
    Nick Frost                             Andrew Wilson                      Todd Wade
    Director                                  Principal Consultant              Principal Consultant

    If you would like our team to discuss a topic or address a certain challenge, please contact us at info@crmg-consult.com.

    For more information on assessing third party risk, read our article here.

    Related Articles

    13.11.2020. Cybersecurity, Podcasts Neurodiversity and Cybersecurity – Untapping a superpower

    When you think about cybersecurity, you generally don’t tend to think about people, and you certainly don’t think about the neurodiversity of people. The profession has been battling a skills gap...

    Read more…
    01.10.2020. Cybersecurity, Podcasts CRMG Podcast: How to Fast-Track Your Cybersecurity Journey with a No-Nonsense Gap Assessment

    For most organisations, particularly those that are small to mid-size, budget and resources for cybersecurity may not be sufficient to effectively protect their organisation...

    Read more…
    20.08.2020. Cybersecurity, Podcasts, Risk CRMG Podcast: Managing Cyber Risk While Growing an Online Business

    The emergence and rapid growth of online retail is a great example of how businesses can move most of their operations online. Even businesses that don’t sell their products or services online are now benefiting...

    Read more…