Sign up to save your podcasts
Or
Share Software Supply Chain Concerns for DevSecOps Programs
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
Software Supply Chain Concerns for DevSecOps Programs
Managing third-party relationships, such as pubic cloud service providers, requires a set of skills often unfamiliar to many technologists. These relationships are constructed on a foundation of verifiable trust. This requires managing the cybersecurity performance of third parties via contractual mechanisms rather than the traditional line-of-sight practices used internal to an organization. Chief among these mechanisms are service-level agreements (SLAs). Cybersecurity SLAs are vital to the success of third-party relationships and a core component of sound governance.
What Attendees Will Learn
• How to design and implement meaningful SLAs
• How best to use SLAs to drive third-party cybersecurity performance
• The limits of SLAs as a third-party risk management tool
View all episodes
By SEI Members of Technical StaffManaging third-party relationships, such as pubic cloud service providers, requires a set of skills often unfamiliar to many technologists. These relationships are constructed on a foundation of verifiable trust. This requires managing the cybersecurity performance of third parties via contractual mechanisms rather than the traditional line-of-sight practices used internal to an organization. Chief among these mechanisms are service-level agreements (SLAs). Cybersecurity SLAs are vital to the success of third-party relationships and a core component of sound governance.
What Attendees Will Learn
• How to design and implement meaningful SLAs
• How best to use SLAs to drive third-party cybersecurity performance
• The limits of SLAs as a third-party risk management tool