The ISO Review Podcast

Cybersecurity in Supplier Relationships: ISO 27036 Part 2, Clause 7.2 - Supplier Selection Process

Jim Moran, Howard Fox Episode 26

Howard and Jim chat about  ISO 27036-2, Clause 7.2 - Supplier Selection Process.

Points discussed include:

  1.  How can organizations effectively plan their supplier relationships to mitigate information security risks?
  2.  What are some real-life examples of information security breaches and their impact on organizations? 
  3.  Why is it important for organizations to communicate the importance of information security to all employees, and how can top management lead by example?
  4.  What are some key elements that should be included in a supplier relationship plan to ensure information security?
  5.  How can organizations assess and manage risks in their relationships with suppliers?
  6.  Why is it impossible to eliminate all information security risks, and how can organizations determine acceptable levels of risk?
  7.  What role does legal and regulatory compliance play in supplier relationship planning for information security?
  8.  How can organizations ensure that their suppliers are complying with information security requirements and addressing potential risks? 
  9.  What are some considerations for evaluating new suppliers in terms of their information security impact?
  10.  Why is it important to continually maintain and update information security measures in an organization?

Complimentary ISO Resources

Click here to try the online ISO 27001 Gap Checklist.

Upcoming Episodes

Howard and Jim chat about: 

  • ISO 27036-2 Supplier Relationship Requirements - Clause 7.3 - Supplier Relationship Agreement
  • ISO 27036-2 Supplier Relationship Requirements - Clause 7.4 - Supplier Relationship Management Process
  • ISO 27036-2 Supplier Relationship Requirements - Clause 7.5 - Supplier Relationship Termination Process

Next Steps

If you enjoyed this episode, please follow us on your preferred podcast directory. We appreciate your likes & comments, and invite you to share episode with anyone who might benefit from learning about this topic.   

Click here to visit the SimplifyISO website to discover how our cloud-based management system will satisfy all the Standards requirements, client requirements, and any other requirements that you have to meet.

Click here to visit the International Management System Institute website so that you can learn about how and why you should consider becoming a Certified ISO Management System Professional.

Learn more about Jim on LinkedIn & YouTube

LinkedIn
LinkedIn Articles:
YouTube

Learn more about Howard

Click here to learn more about the Coaching and Podcast Services provided by Fox Coaching, inc.

Keywords

#ISO #ISO27001 #ISO27001Certification #InformationSecurityManagementSystems  #I

Podcasts we love

Check out these other fine podcasts recommended by us, not an algorithm.