From the course: CISSP Cert Prep (2021): 1 Security and Risk Management
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Vendor information management
From the course: CISSP Cert Prep (2021): 1 Security and Risk Management
Vendor information management
- [Instructor] As organizations increasingly use vendors for services that include the storage, processing and transmission of sensitive information, they must pay careful attention to the vendor's information management practices. Data ownership issues often arise in supplier relationships particularly when the vendor is creating information on behalf of the customer. Agreements put in place prior to beginning a new vendor relationship should contain clear language around data ownership. In most cases, a customer will want to ensure that the customer retains uninhibited ownership of the information and that the vendor's right to use the information is carefully limited to activity performed on behalf of and with the knowledge and consent of the customer. In addition customers should ensure that the contract includes language that requires that the vendor securely delete all customer information within an acceptable period…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.