22.4.3. Third-Party Risk Assessment

0.0(0)
studied byStudied by 0 people
learnLearn
examPractice Test
spaced repetitionSpaced Repetition
heart puzzleMatch
flashcardsFlashcards
Card Sorting

1/6

flashcard set

Earn XP

Description and Tags

22.4 Security Policies

Study Analytics
Name
Mastery
Learn
Test
Matching
Spaced

No study sessions yet.

7 Terms

1
New cards

Third-Party Risk Assessment

- Third parties = major source of privacy and security risks.

- Companies are still accountable for third-party breaches.

- Many breaches happen due to third-party weaknesses.

2
New cards

Third-Party Risk

  • Security and privacy risks introduced when an organization relies on external vendors or service providers.

3
New cards

TPRM

**Third-Party Risk Management

👉 Checking if vendors/partners are safe to work with (they have access to your data/systems).

4
New cards

Privacy Maturity

"How well a partner protects your data, including their rules, tech, and how they manage risks."

5
New cards

Privacy Audit

"Checking if a partner's privacy rules and tech actually keep your sensitive info safe."

6
New cards

Collective Risk

The total combined risk posed by all third-party vendors to the organization.

7
New cards

Redundant Vendors

"Having too many outside companies doing the same job, which makes security harder and riskier."

Explore top notes

Explore top flashcards