CEOs and other business leaders may not know anything about security, but they are given credit for what they do know about how to motivate and lead people.
The role of a security professional in the vendor review process is to help identify which vendors are "critical" to the security of information assets.
