This event has ended. Visit the official site or create your own event on Sched.
Back To Schedule
Friday, October 11 • 11:00am - 12:00pm
SC-1008 How to Avoid Supply Chain Pains for Financial Gains

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Feedback form is now closed.

Organizations rely heavily on third-party vendor relationships to provide their customers with various products and services. Mid-market companies, however, find themselves playing catch up to compete with the maturity of large organization risk assessment programs.

This talk will reflect on real-world examples of the speakers experience developing third-party risk assessment questionnaires and reviewing those provided to a number of Credit Unions and Healthcare institutions in various states (both geographically and maturity of their security programs). He will also discuss how to fold OSINT investigation techniques to perform detailed background checks on the partners and their employees.

Attendees will learn how to:
- Create and refine third-party risk quantification criteria for partners and vendors,
- The questions to ask your supply chain and discover the exaggerations, half-truths, and outright lies from respondents, and
- Extend their current risk assessment activities beyond simple documentation review using freely available OSINT tools and techniques.

avatar for Andrew Hay

Andrew Hay

Chief Operating Officer, Lares Consulting
Andrew Hay is an experienced cybersecurity leader, data scientist, researcher, and international public speaker with decades of experience across multiple IT, security, and risk domains. He has authored several books on endpoint, network, cloud, and security management topics, has... Read More →

Friday October 11, 2019 11:00am - 12:00pm CDT
TEXAS BALLROOM - A/B | Keynote - CISO 600 E Market St, San Antonio, TX Floor 4