Reporting & Analytics: Ongoing Monitoring Flashcards

1
Q

Data Input and output

A

-One of the best places to do reporting is in the continuous monitoring space.

-You have a number of data inputs

-A lot of teams will rely on vendor risk rating tools, but we should challenge the teams to take this as data input is a data feed but not doing the risk analysis for you.

-Look at ue diligence data, risk acceptance still open, variance in contract, everything that is reportable gaps for a vendor can be put into a BI tool like tablo take into consideration that you need to evaluate different information in different ways.

-Make better decisions, stop being reactive.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

Predictive Intervention

A

-Thresholds
-Risk-based
-It’s an intervention

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

Predictive Intervention:
Thresholds

A

Start with smaller list and see how far you can bring it to where the threshold needs to be

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

Predictive Intervention:
Risk Based

A

Start with your critical vendors, top 20 to 50 you have the highest risk and see how they look inside a BI tool and add vendors to this view as you get comfortable where you are

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
5
Q

Predictive Intervention:
Intervention

A

As you get comfortable in how to engage with these vendors say here’s the concern, here’s the findings, this is how to have a conversation before there’s a breach

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
6
Q

Escalation Reporting

A

-Thresholds
-Risk-based
-Careful what you ask for

-Triggers of what escalation needs to happen in your reporting.
-Is it automatic or driven by a decision making team?
-This needs to be well throughout risk based so you’re not escalating everything.
-Make sure you’ve fully articulated what the outcome expectations are.
-Generally approach an escalating with one if not two outcomes you expect from the leader.

You need to tell them what happened and what you want.
E.g. this critical vendor is trending red and we need you to help us get in front of the vendor and get them engaged because they will not response.
-Come to leadership with an expectation of what we want them to do.
-Manage your managers and leadership.
-Tell them the issues and what you need from them.
-Come in with a solution or proposed way forward.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
7
Q

Enhanced Cyber Continuous Monitoring

A

Chart: two sides

What is it?
What does it solve?

Critical vendors. Look at your nth party and get a handle on your critical vendors.
-Take more information and hands on action with these vendors.
-When doing intake with these vendors, you’re going to be asking enhanced questions:
What are your material 4th or 3rd parties to product this service?

What software are you using to product our software or service?

Webportal what hardware are you running to produce the software or service?

When you get this information it gives you more visibility into these critical vendors.
You’re doing it for the finite ist of vendors.
As you’re getting this you’re putting it into your systems of records, so you can track this information.
Take more corrective action more quickly.

How well did you know this?
1
Not at all
2
3
4
5
Perfectly