The key to mitigating risk when it comes to using third-party vendors and contractors is a close working relationship, opines Adam Ely for Dark Reading. When a breach does occur, it is essential to understand the incident, assess damage and establish a plan of action, he writes. Within the working contract, there should be language on an organization's rights. "The trickiest part is timing. Disclose too early and you risk communicating bad or incomplete information. Wait too long and the public will balk at you for waiting so long," he writes, adding that, typically, earlier is better when it comes to breach reports.
If you want to comment on this post, you need to login.