How can you give yourself as much flexibility as possible to decide when to go with best-of-breed capabilities? How do you ensure you're not sacrificing the quality of your security solutions at the altar of vendor consolidation?

Security Strategy & RoadmapSecurity & GRCApplications & Platforms
163 views3 Comments
Sort By:
Oldest
Director of IT in Healthcare and Biotech7 months ago
Understanding your requirements is key. You have all the flexibility you want until you make a decision. Therefore, it's crucial to understand what you're trying to decide on and how you're going to make that decision. It's also important to build deliverables into your agreements. If you do this correctly, you'll have a way out if things don't go as planned. If you don't, you'll be locked in, making it more difficult to change vendors if necessary. Understanding what you're trying to solve and the issues with your current solutions will give you the flexibility to make decisions. Ultimately, you should choose a vendor that can meet most of your needs to a satisfactory level. This will give you enough flexibility to decide whether you want the best of breed or more consolidated solutions.
Director of Information Security in Services (non-Government)7 months ago
When choosing a vendor, it's important to take into account all of your internal requirements. This includes whether you're moving towards cloud-based solutions or developing an arm in your organization. You should stand up all your vendors, present them with your list of business requirements, and ask how their toolset can address these requirements. It's also important to ask whether they can deliver these solutions without adding additional skews to their product. Ideally, you should be able to configure their product to address all of your new and existing business requirements.
lock icon

Please join or sign in to view more content.

By joining the Peer Community, you'll get:

  • Peer Discussions and Polls
  • One-Minute Insights
  • Connect with like-minded individuals
CISO in Finance (non-banking)7 months ago
It all comes down to regular vendor reviews and assessments, regardless of whether you're locked into an agreement with a vendor or not. It's crucial to determine whether the vendor is covering what you want and where you want to be. This involves defining your needs through assessments and reviewing them on a routine basis. Each time you have a vendor renewal, you should reassess everything, as your risks and vulnerabilities are constantly changing. This comprehensive assessment will allow you to decide whether it still makes sense to stick with your current vendor or if it's time to switch to a new vendor who can provide something better.

Content you might like

What’s on your IAM roadmap for the next 18-24 months?

Identity & Access Management (IAM)Threat & Vulnerability ManagementSecurity Strategy & Roadmap
Director of IT in IT Services4 days ago
Implementation of Zero trust architecture, its modules across the organisation is a priority for us. So, we will be implementing zero trust strategies in IAM, inline with overall strategy.
1.4k views1 Comment

What is your organization’s current status for implementing endpoint security to protect O365 on mobile devices?

End-User Services & CollaborationSecurity & GRCDevice Management+14 more

Implementation complete23%

Implementation in progress54%

Planned within the next 12 months12%

Not planned7%

Not enabling O365 on mobile2%

View Results
2.4k views2 Upvotes

How can CISOs influence (or perhaps even contribute to) the business’s AI adoption strategy?

Security Strategy & RoadmapSecurityDisruptive & Emerging Technologies+3 more
CISO in Manufacturinga month ago
CISOs have a unique opportunity to proactively shape their organization's AI adoption strategy, Because AI adoption is either in the process of emerging or companies that have already gone down a path are readjusting their ...read more
1
Read More Comments
701 views6 Comments

Are below the operating system vulnerabilities a top concern for your organization?

EngineeringGovernance, Risk & ComplianceSecurity & GRC+1 more

Yes79%

No20%

5k views3 Comments

Can you share advice for leaders looking to shift to a multi-cloud strategy for better resilience in the event of major disruption (such as the recent CrowdStrike outage)? What best practices or common pitfalls are most important to consider?

Security Strategy & RoadmapSecurityPeer Insights+2 more
CISO/CPO & Adjunct Law Professor in Finance (non-banking)a month ago
1.       Ensure the “different” providers are not front ends for the same foundational provider.

2.       Review the track record of each provider on the whole as well as their record with organizations of your size, ...read more
1
Read More Comments
506 views3 Comments