CAR­RY­ING OUT DUE DILIGENCE YOUR­SELF

Distinguished Magazine - - CYBERSECUR­ITY -

You have the pri­mary obli­ga­tion for your data se­cu­rity exposure. You should make sure to carry out your own ac­tiv­ity even though you re­quire it from your ven­dors. A ven­dor who doesn’t share any in­for­ma­tion with you, but all the same con­nects with you in a cer­tain form or helps you evolve your web ap­pli­ca­tions. The con­trols you have in place should be ex­am­ined. You should make sure if you need to carry out any ex­tra se­cu­rity de­liv­er­ables re­view or a sign-off level could be added be­fore they gain en­try to your sys­tems to en­sure cy­ber­se­cu­rity.

If you let third par­ties gain ac­cess to your en­vi­ron­ment, then maybe the ven­dor who su­per­vises your in­ven­tory lev­els, so they can de­liver you sup­plies when you re­quire it. Both you and the ven­dor would ben­e­fit from this en­try into your sys­tems.

Any area of the IT en­vi­ron­ment where a ven­dor could gain ac­cess should be treated as a de­ceit­ful net­work. If you’re not sure that the data traf­fic and ac­tiv­ity is safe and clean, then fenc­ing the area with lay­ers of in­tru­sion pro­tec­tion and fire­walls would be the best steps to take.

The most im­por­tant el­e­ment of a ven­dor agree­ment is the level of trust but the chance to ver­ify is an im­por­tant por­tion of that agree­ment.

To find out that your in­for­ma­tion is ex­posed in the cor­po­rate world is a nightmare. But these tips could en­sure that you have data se­cu­rity cov­ered fully.

Newspapers in English

Newspapers from India

© PressReader. All rights reserved.