Where’s your security policy?
Current threats to the supply chain of big businesses has caused a ripple down effect, putting pressure on small businesses to meet often excessive information security controls. Security questionnaires are increasingly becoming a standard part of procurements and are often checklist designed for much larger organisations. You may have the best product and price out there, but if you can’t say how you process personal data or hold Cyber Essentials accreditation, you could well lose the business!
This session, from CSP’s Consulting Director, Kevin Else, will take you some of the tips and tricks of dealing with these questionnaires and why its not a problem challenging them. Often written by Cyber Security experts, the terminology used often means nothing to the small to medium company business owner, leading to them struggling to respond or fearing that an inadequate response could lead to a loss of business. If challenged in the right way small companies can often be exempt from the controls, or even be offered assistance by the client to address any information security concerns.