Dust off your company's risk assessment process and make sure it is up to date because this is where your approach to defending against a WikiLeaks type of threat is going to start.
Even if vendor security is not on the radar of your regulators or auditors, you may still want to consider how a vendor information security program could help you reach your greater aim of ensuring the confidentiality, integrity and availability of your organization's information assets.
