can ensure that the compliance standard of the supplier meets the needs of the organisation and mitigates risk .
Organisations should be diligent in verifying the security practices and procedures of third-party suppliers , vendors and partners in order to reduce threats and minimise risk . Independent certification to a framework such as the information security standard ISO 27001 , the industry bestpractice for information security , is now becoming a more prevalent requirement for obtaining certain contracts , especially those involving public sector contracts and other critical industries , such as the financial services sector . Certification to standards and schemes such as ISO 27001 and the UK Government-backed Cyber Essentials scheme allow organisations to provide their suppliers with the assurance that they have taken a baseline approach towards cybersecurity .
63 www . supplychaindigital . com