Which business units have you successfully engaged to increase your security budget for 3rd party vendors?

1.7k views3 Comments

Global CIO & CISO in Manufacturing, 201 - 500 employees
If you're selling a product, or looking at vendors, use the security component as a marketing selling push. Say, “Here's a one-sheet about how secure we are,” and have marketing add that to their pitch. Then ask marketing for dollars to fund it. Depending on the company you're in, you can flip the script to say, “By the way, in order for it to get from there to here, could you donate a few hundred thousand dollars to help us support what you're trying to do?”
VP, Director of Cyber Incident Response in Finance (non-banking), 10,001+ employees
We use our security operations center (SOC) as a marketing tool. We bring prospective customers through our SOC so that they can see how we do security—we just finished a big capital project to triple the size of it. Another interesting thing to think about is not only the third parties that you do business with, but also some of your third-party customers. Who uses your company that you want to help manage, especially if they have a network connection back to you or an outsourced vendor that you allow onto your network? And then, where do you stop? There are fourth party relationships that you need to be concerned about as well. Those are things to keep in mind.
Sr. Director of Enterprise Security in Software, 5,001 - 10,000 employees
Get marketing to fund a Trust Page, which will enable you to get SOC compliance, etc.

Content you might like

CTO in Software, 201 - 500 employees
Without a doubt - Technical Debt! It's a ball and chain that creates an ever increasing drag on any organization, stifles innovation, and prevents transformation.
Read More Comments
47.2k views133 Upvotes326 Comments

Malicious use of AI algorithms for targeted cyberattacks20%

Unauthorized access to sensitive AI models and data68%

Adversarial attacks compromising the integrity of AI systems9%

Lack of transparency and explainability in AI decision-making processes3%