•? Problem:" –? Need for vendors to comply with internal policy based on ISO27002" –? IT Security Risk Manager in charge; small team in charge of 1000+ vendors" –? Spreadsheets & emails; triage questionnaire (classi?cation) to determine which of 7 questionnaires vendor should take" •? Solution: " –? Automate triage process for vendor classi?cation" –? Streamline survey Q&A using related control logic" •? Results" –? Cross-map ISO27002 controls

Join for free to read