ISO Standards & Third-Party Risk Management: Pros and Cons

ISO 27001, 27002, and 27036 are international cyber and information security practices standards. These standards provide frameworks and guidance for evaluating and tracking security and data privacy risks from third-party vendors and suppliers. However, the number of controls can be overwhelming, and overlooking a requirement could have serious consequences.

Join compliance experts Joe Toley and Thomas Humphreys as they explore the pros and cons of using ISO standards in your third-party risk management (TPRM) program.

In this session, Joe and Thomas discuss:

• The third-party risk management requirements in ISO 27001, 27002, and 27036
• How to map TPRM practices to ISO controls
• Which key controls are the most impactful
• Where ISO guidelines fall short

If you need to align your organization’s TPRM program with ISO guidelines, you don’t want to miss this on-demand webinar!