To give you the best possible experience, this site uses cookies. Review our Privacy Policy and Terms of Service to learn more. Got it!
Search a title or topic

Over 20 million podcasts, powered by 

Player FM logo
Artwork

Tech Higher Education Podcasting Education Dr Jason Edwards CCISO Certification Cybersecurity Government Risk Management Compliance Security Controls Audit Strategic Planning Budget Incident Response Threat Intelligence Vendor Management Cloud Security Executive Leadership
Content provided by Dr Jason Edwards. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Dr Jason Edwards or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://podcastplayer.com/legal.
Player FM - Podcast App
Go offline with the Player FM app!
Get it on App Store Get it on Google Play

Certified: The CCISO Audio Course « »
Episode 69: Vendor Risk Oversight and Auditing

16:22
 
Play
Playing
Share
 

MP3Episode home
Manage episode 493005566 series 3676011
Content provided by Dr Jason Edwards. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Dr Jason Edwards or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://podcastplayer.com/legal.

Vendor relationships introduce risk far beyond basic performance metrics—and in this episode, we dive into the executive oversight practices required to manage those risks. You’ll learn how to assess third-party risk using tiered models, risk questionnaires, and onsite audits. We also discuss how to require evidence of compliance, conduct assessments aligned to frameworks like ISO 27001 or SOC 2, and monitor ongoing vendor health through threat intelligence and financial viability reviews.

We explore how to embed vendor risk into your broader governance strategy and how to integrate third-party risk data into enterprise risk dashboards. For the CCISO exam, expect questions that test your ability to detect, communicate, and act on vendor-related risks. This episode prepares you to lead third-party risk management as an ongoing, programmatic discipline—not just a checkbox during onboarding.
Ready to start your journey with confidence? Learn more at BareMetalCyber.com.

  continue reading

71 episodes

#Tech #Higher Education #Podcasting Education #Dr Jason Edwards #CCISO #Certification #Cybersecurity #Government #Risk Management #Compliance #Security Controls #Audit #Strategic Planning #Budget #Incident Response #Threat Intelligence #Vendor Management #Cloud Security #Executive Leadership
Artwork

Episode 69: Vendor Risk Oversight and Auditing

Certified: The CCISO Audio Course

published

Play Playing
iconShare
 
MP3Episode home
Manage episode 493005566 series 3676011
Content provided by Dr Jason Edwards. All podcast content including episodes, graphics, and podcast descriptions are uploaded and provided directly by Dr Jason Edwards or their podcast platform partner. If you believe someone is using your copyrighted work without your permission, you can follow the process outlined here https://podcastplayer.com/legal.

Vendor relationships introduce risk far beyond basic performance metrics—and in this episode, we dive into the executive oversight practices required to manage those risks. You’ll learn how to assess third-party risk using tiered models, risk questionnaires, and onsite audits. We also discuss how to require evidence of compliance, conduct assessments aligned to frameworks like ISO 27001 or SOC 2, and monitor ongoing vendor health through threat intelligence and financial viability reviews.

We explore how to embed vendor risk into your broader governance strategy and how to integrate third-party risk data into enterprise risk dashboards. For the CCISO exam, expect questions that test your ability to detect, communicate, and act on vendor-related risks. This episode prepares you to lead third-party risk management as an ongoing, programmatic discipline—not just a checkbox during onboarding.
Ready to start your journey with confidence? Learn more at BareMetalCyber.com.

  continue reading

71 episodes

#Tech #Higher Education #Podcasting Education #Dr Jason Edwards #CCISO #Certification #Cybersecurity #Government #Risk Management #Compliance #Security Controls #Audit #Strategic Planning #Budget #Incident Response #Threat Intelligence #Vendor Management #Cloud Security #Executive Leadership

All episodes

×
 
Loading …

Welcome to Player FM!

Player FM is scanning the web for high-quality podcasts for you to enjoy right now. It's the best podcast app and works on Android, iPhone, and the web. Signup to sync subscriptions across devices.

 

Listen to 500+ topics
Player FM - Podcast App
Go offline with the Player FM app!
Get it on App Store Get it on Google Play
icon
Help/FAQ | Advertise with Us
Arts|Business|Comedy|Economics|Entertainment|News|Politics|Religion
Science|Soccer|Sports|Storytelling|Technology|True Crime
Copyright 2025 | Privacy Policy | Terms of Service | | Copyright
Episode being played series thumbnail
icon icon
Speed
Series settings
1x
1x
Volume
100%
icon
icon icon
/

View Player FM in...
Player FM
Browser
Chrome
Safari
Firefox
Listen to this show while you explore
Play