Best practices in approaching vendor risk assessment
When it comes to vendor risk assessment, a one-size-fits-all approach is not the way to go. Every vendor you bring into your organization will add its own unique set of risks and vulnerabilities, and you should assess them on an individual basis.
In this podcast recorded at the RSA Conference 2010 in London, Garrett Felix, Information Security Officer for MediFit talks about the pitfalls typical for the assessment process and how to avoid them.
Listen to the podcast here.