Your Organisation's Attack Surface Includes
Your Supply Chain

How can procurement and vendor management professionals defend their supply chains? 

The Challenge and Dilemma

The ecosystem of partners and supply chain parties for enterprises is expanding, yet few are monitoring supply chain risk daily. 

Less than half of companies audit or report on vendor security no more than twice per year, yet threats are evolving, and incidents can escalate quickly. (BlueVoyant, 2022)

85% of breaches involve the human element. (Verizon DBIR 2022)

Data breaches are now pervasive, with 83% of organisations having experienced more than one data breach in a year. (IBM 2022)

The Threat

Over 60% of system intrusion incidents come through the supply chain; 39% of breaches happen because a partner was compromised. (Verizon DBIR 2022)

277 days - the global average time it took between identifying an attack to containing it. Supply chain attacks took longer to contain by 26 more days. 

These are the topics we’ll be exploring in our next Community of Practice, and we hope you can join us and your peers in sharing knowledge that progresses us all.

Procurement and Vendor Management Professionals Have a Key Role to Play in the Defence of Our Supply Chains

At the upcoming Community of Practice series, we will explore the following topics. We hope you can join us and your peers in sharing knowledge that helps us all. 

Join us in Sydney

21 June, 2023
8:00 - 9:00 AM AEST

Tank Stream Hotel
97-99 Pitt St, Sydney NSW 2000

Join ISG speakers and a group of peers for an interactive and informative Community of Practice breakfast meeting. 

Please arrive at 7:30 AM AEST for an 8:00 AM start.

About ISG's Community of Practice Event Series

ISG established the Community of Practice several years ago with a belief in the value of fostering community, learning and networking amongst our clients. With vendor management at the core of the community, we aim to create a space for the open sharing of ideas.

We have strong guiding principles: no selling, no positioning of any products or services from anyone (including ourselves), and no providers. ISG acts as a thought leader in this space, and it has created very rewarding results for us and our community members over the years.

Meet Our
Community of Practice Team

Hanne McBlain
Head of GovernX® APAC

Joyce Harkness
Director, Cybersecurity

About ISG

ISG (Information Services Group) (Nasdaq: III) is a leading global technology research and advisory firm. A trusted business partner to more than 900 clients, including more than 75 of the world’s top 100 enterprises, ISG is committed to helping corporations, public sector organizations, and service and technology providers achieve operational excellence and faster growth. The firm specializes in digital transformation services, including automation, cloud and data analytics; sourcing advisory; managed governance and risk services; network carrier services; strategy and operations design; change management; market intelligence and technology research and analysis. Founded in 2006, and based in Stamford, Conn., ISG employs more than 1,300 digital-ready professionals operating in more than 20 countries—a global team known for its innovative thinking, market influence, deep industry and technology expertise, and world-class research and analytical capabilities based on the industry’s most comprehensive marketplace data. For more information, visit