by Richard Barrus | May 6, 2020 | Third Party Risk Management
Reading Time: 2 minutes
Escalating third-party risk is among the top information security challenges from COVID-19. If your business entrusts sensitive data to third parties, or handles sensitive data on behalf of customers, you need to know how remote...
by Richard Barrus | May 4, 2020 | Third Party Risk Management
Reading Time: 3 minutes
In our recent blog and podcast coverage of top information security challenges from COVID-19, third party risk management (TPRM) made the short list. The pandemic is disrupting many aspects of outsourcing relationships, including...
by Richard Barrus | Jan 21, 2020 | Third Party Risk Management
Reading Time: 2 minutes
The Standardized Control Assessment (SCA) tool is provided by the Shared Assessments program. It’s part of their “Trust but Verify” model, where the Standardized Information Gathering (SIG) Questionnaire is the “Trust” portion and...
by Richard Barrus | Apr 16, 2019 | Third Party Risk Management
Reading Time: 4 minutes
Editor’s Note: This post was originally published in April 2017. It has been updated to reflect the name change from AUP to SCA. A Standardized Control Assessment document (formerly known as an Agreed Upon Procedures document) is a...
by Richard Barrus | Apr 1, 2019 | Third Party Risk Management
Reading Time: 3 minutes
Editor’s Note: This post was originally published in May 2017. It has been updated to reflect the name change from AUP to SCA. As hacker monikers go, TheDarkOverlord (TDO) picked a pretty catchy one. Not much is known about this...