Third Party & Insider

E8: What It and It Security Teams Look For in Vendor Relationships

Friday, June 9, 2023 2:45 PM - 3:45 PM

Room 503/504


In this panel discussion, the multi-disciplinary panel will describe what IT and IT Security teams are looking for in vendor interactions starting with the initial pitch through due diligence conversations. This panel will cover tips for laying the initial ground work for a positive interaction and explore the pitfalls of different approaches. The panel will discuss how due diligence processes operate and how to be best prepared for them. Finally, the panel will discuss the advantages and disadvantages of company certification and assessments such as SOC 2 and ISO 27001.

Learner Objectives

After this session: If you are a vendor, this will panel will provide tips for making a more effective pitch and understanding IT and IT Security teams. If you are a service provider, you will learn how to be better prepared for due diligence and legal conversations. Security professionals will gain tips regarding assessment processes.