- Training
- Training Live Events
- Training Without Travel
- SANS Courses
- Certified Instructors
- Career Roadmap
- Training Calendars
- SANS @Home
- SANS OnDemand
- Community SANS
- SANS Mentor Program
- SANS Onsite
- SANS SelfStudy
- SANS Partnership Series
- SANS Workshop Series
- Webcasts
- Work Study
- Events Archive
- DoD 8570
- Voucher Credit Program
- group discounts
- Certification
- Resources
- Vendor
- Portal
- Storm Center
- College
- Developer
- About
the most trusted source for computer security training, certification and research
Vendors and External Outsource Providers How Safe is Your Companys Confidential Data
- Abstract
- Let us assume your business is fairly accomplished in the Risk Assessment evolutionary ladder. Perhaps your company already assesses its network configurations regularly, all the applications in use have been reviewed for stringent security guidelines, maybe the IT team has even classified all your corporate information assets, and the vulnerability assessments are complete. Does this mean the CIO can relax? Is the business safe? Is your network or information accessed by a third party vendor? Where is your information being managed, stored or processed? Is it always on your network? Is it always within the walls of your company? Do you outsource any business functions? Is any of your client's personal information shared with a third party? Do you have any business-to-business connections?