Q&A Series: Supplier Risk

February 15, 2022 • Video
Share this article

Joining our experts on this panel are Sean Pascoe BDO and Mark Bretherton Maribyrnong City Council to explore what due diligence should you implement for new and existing vendors / suppliers to stay cyber secure?


What is the difference between supply chain risk management vs supplier risk management?

When considering supplier risk, what are the most prevalent cyber threats currently?

What due diligence should you implement for new and existing vendors / suppliers as part of your standard way of doing business?

How can we best instill a culture of security awareness, stop phishing attacks within the supply chain, where the majority of the people are not employees or under our direct control?

How do we monitor and reduce insider threats within the supply chain, where disgruntled employees have insider knowledge of our policies and procedures?

What are the best tools in your experience to detect and reduce payroll diversion and supplier invoicing fraud, that may be using closely mimicked domain names or typosquatting?

How would you gain assurance over your suppliers, SOC1, SOC2?