Chapter 26

Managing and Mitigating Vendor Risk

This chapter covers the following topics:

  • Shared Responsibility Model (Roles/Responsibilities): This section covers cloud service provider (CSP) roles, including geographic location, infrastructure, compute, storage, networking, services and client role including encryption, operating systems, applications, and data.

  • Vendor Lock-in and Vendor Lockout: This section covers risk involved with vendor lock-in and lock-out.

  • Vendor Viability: This section covers financial risk and merger or acquisition risk.

  • Meeting Client Requirements: This section covers legal, change management, staff turnover, and device and technical configurations.

  • Support Availability: This section covers risks related to support. ...

Get CompTIA Advanced Security Practitioner (CASP+) CAS-004 Cert Guide now with the O’Reilly learning platform.

O’Reilly members experience live online training, plus books, videos, and digital content from nearly 200 publishers.