

Incident Response Notifications: How To Ensure Open Communication With Vendors
Vendors who develop and sell software, hardware, and infrastructure have a responsibility to notify your company about IT environment incidents, events, and failures. Incident response notifications should allow for open communication when a security threat or potential threat takes place, enabling you to take swift action and protect your data assets. Unfortunately, not all vendors abide by these principles. Some companies send notifications long after an event has happened;


5 Steps to an Effective Vendor Due Diligence Program for Financial Services
Imagine the scene: After months of searching, you've finally found a technology solution that seemingly fits your needs. You've consulted with the software's vendor, sampled a product demo, and got buy-in from stakeholders. At this point, the vendor might present a contract to sign so they can start integrating the software into your system. But while the vendor has a good product, how secure is their system? How do you know if the product is safe, secure, compliant, and does