Information Security Forum to Present Webinar Focusing on Global Supply Chain Security

April 25, 2013 - PRLog -- Organizations go to great lengths to secure intellectual property and other sensitive information internally, yet when that information is shared across the supply chain, security is only as strong as the weakest link. According to the Information Security Forum (https://www.securityforum.org/) (ISF), a global, independent information security body considered the world's leading authority on cyber security and information risk management, sharing information with suppliers is an essential part of an organization’s daily business operations. However, doing so increases information risk: the risk that the confidentiality, integrity or availability of that shared information could be compromised.

The ISF’s latest report, Securing the Supply Chain, made the point that information compromised in the supply chain is just as damaging as that compromised from within the organization as evidenced by numerous recent incidents. Supply chains are difficult to secure, they create risk that is hard to identify, complicated to quantify, costly to address – the last of which can be disruptive to supplier relations.

During this webinar, Adrian Davis, Principal Research Analyst with the ISF, will highlight how organizations need to think about the consequences of a supplier providing accidental, but harmful, access to their intellectual property, customer or employee information, commercial plans or negotiations. You can’t outsource this risk – it is yours to manage and regulators and stakeholders will look poorly on such incidents. By considering the nature of their supply chains, determining what information is shared, and assessing the probability and impact of potential compromises, organizations can balance information risk management efforts across their supplier base.

Davis will also provide insight into the Supply Chain Information Risk Assurance Process (SCIRAP), an approach for larger organizations to manage this risk across their thousands or tens of thousands of suppliers. SCIRAP focuses on identifying information shared in the supply chain and focusing attention on the contracts that create the highest risk. It also provides a scalable way to manage contracts so that efforts are proportionate to the risk.

Please register via this link (https://www2.gotomeeting.com/register/110356866) for the free webinar on Tuesday, May 14 at 8 a.m. (ET)/1 p.m. (BST).

About the Information Security Forum

Founded in 1989, the Information Security Forum (ISF) is an independent, not-for-profit association of leading organizations from around the world. It is dedicated to investigating, clarifying and resolving key issues in cyber, information security and risk management and developing best practice methodologies, processes and solutions that meet the business needs of its Members.

ISF Members benefit from harnessing and sharing in-depth knowledge and practical experience drawn from within their organizations and developed through an extensive research and work program. The ISF provides a confidential forum and framework, which ensures that Members adopt leading-edge information security strategies and solutions. And by working together, Members avoid the major expenditure required to reach the same goals on their own.

Further information about ISF research and membership is available from www.securityforum.org