Data Protection Through Vendor Management

We apologize for the brief delay in launching CFMA’s new education and certification platforms. The CCIFP Recertification deadline has been extended to April 30, 2025. We truly appreciate your patience as we put the finishing touches on changes that are designed to improve and enhance your CFMA experience!

by Audrey L. Katcher, CISA, CPA, CITP, Rob Rudloff, CISSP, ISSMP, MBA

As contractors grant more outside parties access to company data, they must protect their information from being mishandled or altered. While some data breaches are beyond a company’s control, many are preventable.

Parties up and down the supply chain are worried about managing their reputation, maintaining their market value, and addressing regulatory requirements. In the event of a breach, the company that owns the information is often perceived as the one to blame (e.g., few can recall the name of the HVAC contractor that led to the 2013 Target data breach).

If you are a CFMA member login to continue reading this article. If you aren't a member yet and would like unlimited access to all of the content on cfma.org, plus a variety of other benefits, join CFMA today!

Unlock Your Benefits

About the Authors

Audrey L. Katcher, CISA, CPA, CITP

Audrey L. Katcher, CISA, CPA, CITP, is a Partner at RubinBrown, LLP in St. Louis, MO, where she leads the IT Risk Services practices.

Read full bio

Rob Rudloff, CISSP, ISSMP, MBA

Rob Rudloff, CISSP, ISSMP, MBA, is a Partner at RubinBrown LLP in Denver, CO, and leads the company’s Cyber Security Advisory Services team.

Read full bio