Supplier Security Assessments
Our long-term client is a world leader in information and analytics for customers across the global research and health ecosystems.
As part of their standard operations and service delivery, they are reliant on specific suppliers across the globe to fulfil production process requirements. Elsevier recognise that utilisation of external parties can introduce additional risk to the protection of data and service provision.
Part of our engagement was to determine the approach for assessing such a vast number of suppliers in a controlled and consistent manner that was scalable and cost effective.
“We have worked with CyberCX for a number of years so we were confident about the security controls we have in place. However, we work with over 40 suppliers worldwide and were very aware of the risks this presented. A supplier resiliency program (SRP) was the natural next step and CyberCX did not fail to deliver.”
CyberCX successfully carried out all Supplier Assessments providing Elsevier with the peace of mind that all their critical suppliers have the required standard security and resilience practices in place which protect the confidentiality, integrity and availability of their organisation’s data and services.
The program has also enhanced the suppliers’ reputation by giving their customers and business partners confidence that they are committed to information security and have robust systems and procedures to safeguard sensitive data in place.
The benefits of the supplier assessments have been recognised internally at Elsevier by managing supply chain risk as well as externally in the market and it is now carried out on an annual basis as part of an ongoing program.
Read more about our approach to implementing Supplier Security Assessments for Elsevier here: