Vendor Risk Management, including Supply Chain, is a topic we hear more and more about from a risk perspective, but little information still exists on the practical implementation of VRM, particularly for IT Services programs. This session will provide an overview of a comprehensive Vendor Risk Management framework that forms the basis of an end-to-end lifecycle to implement, measure, and improve cybersecurity with regard to suppliers, subcontractors, and OEMs. 1. Understanding of what Vendor Risk Management is, including supply chain and more 2. A practical framework and structure for the establishment of a Vendor Risk Management Program 3. Tips, tricks, and best practices to jumpstart implementation and start getting benefits in risk mitigation