Through your vendor risk management program, you’re supposed to monitor your vendor’s information security and cybersecurity practices. As part of that, you need to manage the vendor’s information [...]