This guide focuses on information security in supplier management and the part that an organisation-wide approach plays in mitigating cyber risk in supplier relationships. In particular the guide sets out:
- Stories from the front line – describing the damage that can occur when unchecked cyber risk rears its head in supplier relationships
- The challenges – which describe why strong information security management in supplier relationships is complex and often goes wrong
- A basic approach – setting out how strong information security disciplines – based on the criticality of supplier relationships – can be reflected at each stage of the procurement cycle in a way that doesn’t de-rail the business
- Further resources – showing where to find further guidance and support.