Assessing vendors : a hands-on guide to assessing Infosec and IT vendors / Josh More.

Format:

Book

Author/Creator:

More, Josh.

Series:

Gale eBooks

Language:

English

Subjects (All):

Information technology--Management.

Information technology.

Information technology--Contracting out--Management.

Physical Description:

1 online resource (xiv, 80 pages) : illustrations

Edition:

2nd ed.

Other Title:

Hands-on guide to assessing Infosec and IT vendors

Place of Publication:

Burlington : Elsevier Science, 2013.

Waltham, MA : Syngress, 2013.

Language Note:

English

System Details:

text file

Summary:

Assessing vendors is a tricky process. Large and regulated organizations are forced to demonstrate due diligence in vendor assessment, but often do not know how to do this. This results in a great deal of busywork being required by both the vendors and the organizations. Smaller organizations don't know what to look for and, as a result, often wind up selecting based on price instead of value. This results in service failures and vendors that just milk their customers for as long as they can. Assessing Vendors shows you how to walk the line between under- and over-assessing,

Contents:

Front Cover; Assessing Vendors; Copyright Page; Contents; Acknowledgments; Introduction; How to Read This Book; Phase 1 Preliminary Research; 1.1 Preliminary Research; 1.1.1 Identifying Vendorspaces; 1.1.2 Identifying Candidates; 1.1.3 Building Criteria; Phase 2 Sort; 2.1 Sort; 2.1.1 Quick Sort-Filter Out; 2.1.2 Quick Sort-Filter In; Phase 3 Functional Testing; 3.1 Functional Testing; 3.1.1 Choosing a System; 3.1.2 Using Scales; 3.1.3 Testing Availability; 3.1.4 Testing Possession/Control; 3.1.5 Testing Confidentiality; 3.1.6 Testing Utility; 3.1.7 Testing Integrity

3.1.8 Testing Authenticity3.1.9 A Note on Adjusting Criteria; Phase 4 Scoring, Weighting, and Sorting; 4.1 Scoring, Weighting, and Sorting; 4.1.1 Filtering Out Losers; 4.1.2 Selecting Winners; Phase 5 Deep Testing; 5.1 Deep Testing; 5.2 Fair Versus Unfair Testing; 5.3 Identifying Needs; 5.3.1 Deep-Testing Availability; 5.3.2 Deep-Testing Possession/Control; 5.3.3 Deep-Testing Confidentiality; 5.3.4 Deep-Testing Utility; 5.3.5 Deep-Testing Integrity; 5.3.6 Deep-Testing Authenticity; 5.3.7 Cryptography Advice from Anthony J. Stieber; Phase 6 Adjusting Needs; 6.1 Adjusting Needs

6.1.1 Selecting and Ranking the Final ListPhase 7 Negotiating Price; 7.1 Negotiating Price; 7.1.1 Project Management; 7.1.2 Price; 7.1.3 Top-End Price Targeting; 7.1.4 Bottom-End Price Targeting; 7.1.5 Edge Cases; 7.1.6 Negotiation; 7.1.7 Negotiation Processes; Phase 8 Production; 8.1 Production; Phase 9 Conclusion; 9.1 Conclusion; 9.1.1 Keep Your Eye on the Prize; 9.1.2 Avoiding Vendor Manipulation; 9.2 Final Words

Notes:

Description based upon print version of record.

Includes bibliographical references.

ISBN:

9781299474369

1299474365

9780124104464

0124104460

OCLC:

858926212