At Brigade, we’ve been pretty open about how we maintain security and confidentiality while working remotely. However, you may be wondering how your other third-party vendors handle this, especially if they help you deliver services to your clients.
If these businesses have team members working from home, areas of concern can include:
Staff members using personal devices and/or sharing devices.
…and more.
Here’s what you need to find out before letting third-party vendors access your network and/or store your data.
The vendor providing cloud technology might be from a large corporate entity, or a one-woman show. If you haven’t interacted with the specific person who can address privacy and security issues, make sure you’ve introduced yourself.
Find out if the vendor has had any breaches, disruptions in service, or cybersecurity issues. See if they had a disaster plan in place before the pandemic, and how smoothly it was implemented. If there were problems, how were they addressed?
Your vendor should be focused on protecting you from loss. These losses could come from:
Since the pandemic disrupted “normal” working conditions, have their protections against these risks been adequate?
If you are already working under a contractual agreement, consider adding amendments that cover remote work-related security issues. Keep track of incidents that could be affecting you.
At Brigade, we view third-party cybersecurity as a financial risk. It’s time to address virtual working realities by drilling down and buttoning up any areas of concern. We help our clients protect themselves. For more tips on managing business risk, follow us on Facebook and LinkedIn.
Additional sources
Vendor Management: 7 Tips for Security During Remote Work
COVID-19: Third-Party Risks To Businesses