For Businesses, Vendor Contracts Can Have Huge Cybersecurity Implications
With all the pressure on companies to build a robust cybersecurity defense within their own four walls, one area of risk might be getting overlooked, writes Shawn Shinneman of the Dallas Business Journal.
He talked to Sara Romine, an attorney at Carrington Coleman in Dallas, to find out how to deal with an attack that comes in through a third-party vendor.
Companies can be at risk and liable when dealing with vendors who have direct access to sort, store or transmit their data, she told the reporter.
“She’s found that companies tend to make some mistakes that grant leverage to the other side during negotiations either to strike a new agreement or renew an existing one. One big one is waiting until the last month or so to start the process,” the article reports.