Independent external assessments of vendors can reveal some of their operational and security practices, and often telegraph the state of their internal environment. However, external assessments only see the perimeter. For a true risk assessment, vendors are often asked to answer a series of questions about their methods, software, and vendors, so that the company contracting them can get visibility into the environment which will be handling their data. Find out common obstacles, how to automate questionnaire processes, and how to ensure that only the right questions get asked and answered.
This eBook will look at questionnaires covering: