Cris Ewell, CISO of UW Medicine, shares insight from his experience managing vendor risk. Ewell discusses his organization’s top third-party risks and best practices for controlling third- and fourth-party risk. In a video interview at Information Security Media Group’s recent Fraud and Breach Summit in Seattle, Ewell talks about his experiences with vendor risk management and third- party risk management. In the video interview, he discusses: Basic elements of an effective third party risk program and how to manage events, events and governance.”]
Source: https://www.govinfosecurity.com/ciso-notebook-third-party-risk-a-12740