NewkThe most supidest shit I have to face at the moment?
'Third Party Risk Management' tools like this dumb approach.
https://www.spglobal.com/marketintelligence/en/mi/products/ky3p.html
Do we (all #ISOs) really want to send out requests to all of our suppliers to register in some portal and fill out forms for every topic like 'Are you using MOVEit'?
Does anyone really think this approach will help solve the supply chain risk in any kind of way?
#KY3P #supply #supplychainsecurity #compliance #ciso #iso #infosec
