From the course: CCSP Cert Prep: 6 Legal, Risk, and Compliance Audio Review
Unlock the full course today
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Supply chain risk
From the course: CCSP Cert Prep: 6 Legal, Risk, and Compliance Audio Review
Supply chain risk
- [Narrator] In chapter three I shared a lot of information on supply chain risk. A really important topic for the exam and for cloud security in general. Let's review some of the key points. We need to manage risk throughout different phases of the vendor lifecycle. This includes evaluating your options and selecting a new vendor, onboarding the vendor into your environment, maintaining that relationship on an ongoing basis, and eventually ending the vendor relationship. You can learn more about this cyclic process is iso standard 27036. Which covers information security for supplier relationships. In this chapter we discussed a number of different types of agreements that you might enter into with cloud providers. Service level requirements or SLRs are the basic expectations that you have the for the vendor's provision of service to you and your organization. You document SLRs in a service level agreement or SLA. A…
Contents
-
-
-
(Locked)
Risk assessment3m 6s
-
(Locked)
Risk assessment Q&A2m 7s
-
(Locked)
Risk management2m 41s
-
(Locked)
Risk management Q&A1m 34s
-
(Locked)
Supply chain risk2m 32s
-
(Locked)
Supply chain risk Q&A1m 54s
-
(Locked)
Cloud privacy and compliance2m 29s
-
(Locked)
Cloud privacy and compliance Q&A1m 17s
-
(Locked)
Security policies1m 56s
-
(Locked)
Security policies Q&A1m 42s
-
(Locked)
Security audits1m 52s
-
(Locked)
Security audits Q&A1m 7s
-
(Locked)
-