Building security assurances into vendor/partner agreements: Advise your legal team to add a corporate data security and incident response policy into vendor agreements and to stipulate compliance with them.
Adding depth and breadth to basic security practices: Recommended protections include network segmentation, multi-factor authentication, and strong passwords.
Encryption - Ask how vendors are protecting sensitive data since you and the vendor should encrypt sensitive data as it's sent over the network, such as via the web or email.
"Working together, every department and manager involved with the supply chain and partner organizations can build a safe environment. Doing so before a cyber attack or accidental data breach occurs can close a critical gap in your organization's security posture," Myers said.
Source: CSO Australia
Sign up for CIO Asia eNewsletters.