The latest enterprise risk management news from around the world

Key questions to ask to improve your third-party IT risk management

A new resource from ISACA, ‘Managing Third-Party Risk: Cyberrisk Practices for Better Enterprise Risk Management’ provides information and advice to help organizations better manage third-party IT risks.

Vendors can be an overlooked entry point into organizational data and the Managing Third-Party Risk resource provides risk management professionals with a foundational understanding of the full spectrum of third-party risk management—from third-party governance, assessment, analysis, closeout and monitoring. Enterprises will be able to ‘not only start with the basics of defining third-party management roles within their organizations, but also receive guidance for mastering each step of the process’.

Included in the paper are nine specific questions that professionals should ask during the third-party risk assessment process.

The guide also includes six key questions to ask when engaging in threat modeling.

Obtain the document (registration required).



Want news and features emailed to you?

Signup to our free newsletters and never miss a story.

A website you can trust

The entire Continuity Central website is scanned daily by Sucuri to ensure that no malware exists within the site. This means that you can browse with complete confidence.

Business continuity?

Business continuity can be defined as 'the processes, procedures, decisions and activities to ensure that an organization can continue to function through an operational interruption'. Read more about the basics of business continuity here.

Get the latest news and information sent to you by email

Continuity Central provides a number of free newsletters which are distributed by email. To subscribe click here.