This briefing shares the findings of a cross-sector task force of CISOs and staff who developed a comprehensive guide and toolkit for preventing and responding to third- and fourth-party incidents. The Best Practices Guide addresses: (1) key regulations that require fourth party monitoring; (2) changes to risk classifications, communications, inventory, and incident management testing and processes; (3) commercial tools for discovery of security weaknesses and use of fourth party services; (4) contract enhancements; and (5) continuous monitoring practices.
John Germain, CISO, DuckCreek Technologies
Robert Wood, CISO, Centers for Medicare and Medicaid Services
Who Can Attend:
Open to anyone