How can I trust my Vendors with my Data?


If you are thinking about doing business with a vendor who will see your data or connect to your infrastructure, make the following statement.

“Before we start working together, please send me your compliance document for the NIST 800-171 Cyber Security Standards.”

Chances are they won’t know what that is and won’t have anything to send you.  That’s Ok.  Send them to my free NIST Cyber Security Self Assessment and ask them to send you the result.

If you need help in reviewing their results, let me know.

Adam Anderson

Adam Anderson is the author of Built to Survive: A Business Person's Guide on How to Recover and Thrive After a Cyber Attack. Adam’s 15 years of entrepreneurial startup experience and his knowledge Enterprise Cyber Defense gives him a window into what’s wrong with communication between large and small companies. He combined this knowledge and the good works from the National Institute of Standards and Technology’s Cyber Security Framework to co-author the book “Small Business Cyber Security”. This book was later turned into an online class by Clemson University. Adam has been active in peer advisory boards for small business CEOs. He took this experience and co-founded a peer advisory board for Chief Security Officers of fortune 500 companies. This mix of small and large businesses has positioned Adam as one of the few people in the world to understand the complete supply chain of cyber security.
Posted in