Watch this video on YouTube
You're an Information Security Manager at a financial firm that has multiple service providers for various tasks. What would be the BEST strategy to manage the security risks posed by these third-party vendors?