Abstract: Vendor management is not new, especially not to CISOs, given so many incidents turned out to be initiated from the vendor side. However, the fact we still name it “vendor management” means we still see it as something external, and perhaps less important than the rest of the domains in information and cyber security. In this session we will walkthrough a real incident from the past and figure out if treated differently (before and during), we would make a difference. Be aware, though! This session might cause you to work much harder, but definitely will help you be more secured. Speaker: Gidi Farkash, Director of Compliance at anecdotes

Abstract: Your security posture is never just your security posture. It's a combination of yours, your vendors, and their vendors that make up your ecosystem. Keeping up with the quickly changing landscape requires a dynamic third-party risk management program that evolves with you. That is why knowing your third parties’ security posture is key to building a smart, strategic, and scalable third-party risk management program for your business. Join SecurityScorecard to learn: 1. What separates successful third-party risk management teams from everyone else. 2. How to collaborate with your vendors and drive a third-party risk management program you can trust. 3. How to make your business the trusted partner of choice by being easier and more secure to do business with. Speaker: Mahmoud Rabi, Field Sales Director - Middle East at SecurityScorecard