tISS: Supplier Governance

Download the Top Tips from this Corporate IT Forum workshop.

This Information Security Service Supplier Governance workshop had been chosen as a priority topic by The tISS Leadership Board and was identified and developed through research, surveys and member input. 

Supplier management, procurement, and supplier relationship management are common in many large organisations. Aligned to these, supplier governance deals with the security and governance aspects of how the organisation manages its suppliers, including how security is included in contracts and compliance audited.

There were two case studies: one gave an approach to the ongoing security assessment of suppliers, and the other dealt with measurement including the measurability of contract security clauses, and a novel but simple approach to measuring the 'return on investment' of the supplier relationship.

In depth discussion of experiences and practices covered topics such as business and supplier engagement, assessment and selection, measurement, audit and compliance, and the methodologies and standards used.

The workshop hosted by The Corporate IT Forum was attended by 24 people representing 19 organisations from a wide cross-section of enterprises including financial services, councils, pharmaceuticals, government bodies and agencies, retail and manufacturing.

Log in to access this resource in full. If you do not have a login use the form below to request access.

Information request

I would like information about purchasing this resource
I'd like to know if my organisation is already a member
Sign me up for the monthly newsletter
Job Title*
General enquiry or comment?
Sum the two numbers in white
and enter the total value below

Unparalleled Learning

Members Include

united biscuits
travis perkins
start stop bwd fwd

"Just wanted to say thanks; another great day where I have come out with more knowledge than I entered with"

"Many thanks; [the event was] very good and beneficial"

"I have never not found a day interesting"

"The Corporate IT Forum is a fantastic level check, free of vendor sell and consultancy hype. I like the open sharing of experience…"

"We get valuable knowledge and experience from members of The Corporate IT Forum. This helps us to make better and informed decisions to reach our business goals…"

"The knowledge from other people on what they are doing/have done is invaluable to my team"

"The workshop validated the marketplace for supplier apps; participants were of a uniformly high standard; personally, I value highly the ethos of the Forum in the fact that it is supplier independent"

Tel: +44 (0) 1442 866634

Related Content

  • Supplier Relationships (Workshop Oct 2014)
  • Supplier Governance (Workshop Jul 2014)
  • Enterprise Architecture for Business Benefit (Workshop Jun 2014)
  • Making Next Generation IT Outsourcing Work for Your Business (Essen, Germany) (Workshop May 2014)
  • Supplier Relationship Management (Q&A Oct 2013)
  • Successful Supplier Management (Report Oct 2013)
  • Actionable Intelligence (Reality Checker Oct 2013)
  • General Software Providers (Q&A Aug 2013)
  • Governance of Shadow IT (Q&A Aug 2013)
  • Collaborating with Third Parties (Report Jul 2013)
  • Supplier Management 2013 (Reality Checker Jul 2013)
  • tISS: The Threat Landscape (Report May 2013)
  • Implementing Data Governance (Q&A May 2013)
  • SOA Service Litmus Test (Q&A Apr 2013)
  • Supplier Governance: Managing Risk (Report Oct 2012)
  • tISS: Security Policy Development (Report Aug 2012)
  • IT Supplier Management (Reality Checker Mar 2012)
  • Banner