SNS M516 Managing Security Vendors - GIAC Contract and Vendor Management GCVM
 
Course Description
This course focuses on building and managing effective security vendor management and third party risk programs. Learners examine due diligence processes, contract level security controls, and continuous compliance monitoring to reduce organizational exposure from outsourced services and supply chain partners.
 
What You Will Learn
Design and implement vendor management programs aligned with enterprise risk priorities
Conduct vendor security assessments using standardized evaluation frameworks
Develop security focused service level agreements and contract controls
Establish vendor risk rating, monitoring, and remediation tracking processes
Align third party oversight with governance risk and compliance programs
 
Who This Course Is For
This course is intended for security leaders, vendor managers, procurement professionals, risk and compliance teams, legal stakeholders, and security practitioners responsible for managing third party risk and vendor relationships.
 
Hands On Training Experience
Learners participate in guided workshops that focus on building a vendor risk dashboard and analyzing real world contract clauses. Exercises emphasize identifying security gaps, assessing contractual protections, and improving oversight processes.
 
Course Outcomes
Reduce security and compliance risk introduced by vendors and suppliers
Strengthen contract language to protect organizational security interests
Implement structured vendor monitoring and reassessment cycles
Improve visibility and accountability across third party relationships