Managing Third-Party Risks: Business Continuity IssuesA Global CISO Addresses Critical Risk Management Issues During the COVID-19 Pandemic
With most employees working at home during the COVID-19 pandemic, it's more important than ever for businesses to ensure that their third-party providers have adequate business continuity plans in place to ensure uninterrupted service, says Srilanka-based Sujit Christy, global CISO at John Keells Holdings, a conglomerate that owns a wide variety of businesses.
"We need to ask and revalidate if our suppliers' business continuity plan is adequate to sustain our operations and understand our stated objectives," Christy says in a video interview with Information Security Media Group.
He also offers insights on:
- The need for improved third-party security governance;
- New risk management and risk assessment strategies during COVID-19;
- Balancing third-party risk and security;
Christy is a global chief information security officer at John Keells. And experienced governance, risk, compliance, and cybersecurity professional, he is also the director of Layers-7 Seguro Consultoria Private Limited and a board member of the ISACA Sri Lanka Chapter. He is a Certified Information Systems Security Professional, Certified Information Systems Auditor, Certified in Risk and Information System Control, a certified IT Disaster Recovery Professional.