Recently, our Virtual CISO Jenai Marinkovic had an interview discussing how small businesses address the issue of vendor security assessments. One important note that Jenai made was that since most small businesses do not have the resources of larger companies they should focus on making sure they get the fundamentals down for their security policy.
A compliant and solid security program does not need to be expensive. In fact, we have seen compliant programs built at little to no cost. For more insight and to check out the interview click here.