Adventures in Vendor Security and Continuous Review

Explore innovative approaches to vendor security assessment in the cloud era through this 23-minute conference talk from BSidesSF 2020. Delve into Lokesh Pidawekar's insights on continuous review methods that go beyond traditional point-in-time questionnaires. Learn how to leverage publicly available information to evaluate a vendor's security posture effectively. Discover various assessment tools, questionnaire categories, and solutions for ongoing vendor security monitoring. Compare free and premium options, examining their advantages and disadvantages. Gain valuable knowledge on adapting security practices to the evolving cloud provider ecosystem and enhancing your organization's vendor risk management strategies.

Intro
About Lokesh
Disclaimer
Cloud Provider Ecosystem
Assessment Tools
Questionnaire
Categories
Solution
Resources
Examples
Free vs Premium
NowSecure
Advantages
Disadvantages
Conclusion
Outro