Information security compliance is both an operational and a legal concern for the organizations today. In this workshop the role of the Chief Digital Security Officer (CDSO) will be clarified in performing compliance reviews and work together with internal and external auditors whilst showing compliance to the business and the business customers. At the same time, the CDSO must verify security compliance by suppliers delivering services to the business and to the security team.
- Introduction
- The 4 lines of defence
- Relevant security compliance frameworks
- Role of CDSO in security compliance
- In customer contracts
- In supplier contracts
- Exercises with participants
- Review and improve real customer contracts
- Review and improve real supplier contracts
- Conclusions