Costly and destructive cybersecurity breaches at companies such as Equifax in 2016 and Target in 2013 that exposed the personal data of millions of consumers were traced back to vulnerabilities unknowingly exposed by third-party vendors rather than the company itself, proving that cybersecurity is only as strong as its weakest link.
To help avoid and minimize the impact of such breaches, the American Bar Association Cybersecurity Legal Task Force has released its Vendor Contracting Project: Cybersecurity Checklist, which is available at no charge on the ABA website (www.americanbar.org). The checklist is designed to manage cybersecurity risk when working with third-party vendors – from vendor selection, to contracting and vendor management.
The checklist provides guidance on:
• Conducting a risk management assessment of the proposed vendors, to identify relevant threats to security.
• Reviewing vendor security practices and the ability to follow them.
• The contracting process, including setting expectations, mitigating risk and allocating liability.
The document also includes information on critical elements needed in any security program, whether a vendor or the procuring organization.
- Posted July 31, 2017
- Tweet This | Share on Facebook
American Bar Association checklist offers guidelines to avoid cyber breaches
headlines Ingham County
- Cooley Law School Innocence Project hosts wrongful conviction discussion at Alpena Community College
- Michigan Retailers Association names Sen. Santana 2023 Legislator of the Year
- Groups of court reporters rally at State Capitol for fair pay
- Former Michigan House Legislative Director Josiah Kissling joins Plunkett Cooney in Lansing as a client advisor
- On the bench: Mission-driven leadership by Detroit Mercy Law alums
headlines National
- More lawyers—and clients—want to learn about sustainable development practices
- Top artificial intelligence insurance tips for lawyers
- Lawyer charged with illegally transmitting Michigan data after 2020 election
- Viral video shows former Rikers Island inmate as she learns she passed bar exam on first try
- How Sullivan & Cromwell is scrutinizing potential new hires after campus protests
- No separate hearing required when police seize cars loaned to drivers accused of drug crimes, SCOTUS rules