In a world of increasing global cybersecurity threats, organizations need to understand the nature of the threats, as well as to recognize the role that organizations play in end-to-end supply chain cybersecurity in responding to them.
Standards on Third-Party Risk Management and Cyber Risk Assessment Methodologies
#
Presenters
Frances Cleveland, President and Principal Consultant, Xanthus Consulting International
Internationally accepted standards and guidelines support identifying and managing cybersecurity risks associated with the supply chain risk from third parties/suppliers.
Conducting Cyber Risk Assessments for Supply Chain Risk Management
#
Presenters
Frank Honkus, Associate Director of Intelligence Programs / Director of the Cybersecurity Risk Information Sharing Program (CRISP), E-ISAC
Mikhail Falkovich, Chief Information Security Officer, Con Edison
Risk management requires understanding threats, vulnerabilities, and potential impacts. Effective risk management also addresses prioritization, developing projects to mitigate risks, and evaluating the effectiveness of mitigations.
