IDC Survey- "Who Do You Trust?"

Note: Contact information is used so that T.E.N. can manage distribution in order to respect your inbox once you have responded. All data collected will remain anonymous.

Question Title

* 1. Please provide the following information:

Name:

Title:

Company:

Email: *

Industry:

No. Employees:

Overall IT Budget:

IT Security Budget: *

Question Title

* 2. PARTNER RISK: Please rate the following factors based on how they might affect your initial risk assessment of a third party partner prospect. (1 = MUCH LOWER RISK; 4 = NO EFFECT; 7 = MUCH HIGHER RISK)

	Lo	2	3	N/A	5	6	Hi
Very Large Partner Orgs (revenue, employees, etc.)	Very Large Partner Orgs (revenue, employees, etc.) Lo	Very Large Partner Orgs (revenue, employees, etc.) 2	Very Large Partner Orgs (revenue, employees, etc.) 3	Very Large Partner Orgs (revenue, employees, etc.) N/A	Very Large Partner Orgs (revenue, employees, etc.) 5	Very Large Partner Orgs (revenue, employees, etc.) 6	Very Large Partner Orgs (revenue, employees, etc.) Hi
High IT activity (users, connections, volume, etc.)	High IT activity (users, connections, volume, etc.) Lo	High IT activity (users, connections, volume, etc.) 2	High IT activity (users, connections, volume, etc.) 3	High IT activity (users, connections, volume, etc.) N/A	High IT activity (users, connections, volume, etc.) 5	High IT activity (users, connections, volume, etc.) 6	High IT activity (users, connections, volume, etc.) Hi
Higher Contract Value	Higher Contract Value Lo	Higher Contract Value 2	Higher Contract Value 3	Higher Contract Value N/A	Higher Contract Value 5	Higher Contract Value 6	Higher Contract Value Hi
Highly Sensitive Data	Highly Sensitive Data Lo	Highly Sensitive Data 2	Highly Sensitive Data 3	Highly Sensitive Data N/A	Highly Sensitive Data 5	Highly Sensitive Data 6	Highly Sensitive Data Hi
Strong, positive third party audit results (SOC II, etc.)	Strong, positive third party audit results (SOC II, etc.) Lo	Strong, positive third party audit results (SOC II, etc.) 2	Strong, positive third party audit results (SOC II, etc.) 3	Strong, positive third party audit results (SOC II, etc.) N/A	Strong, positive third party audit results (SOC II, etc.) 5	Strong, positive third party audit results (SOC II, etc.) 6	Strong, positive third party audit results (SOC II, etc.) Hi
Score indicating high risk (BitSight, SecurityScorecard, etc.)	Score indicating high risk (BitSight, SecurityScorecard, etc.) Lo	Score indicating high risk (BitSight, SecurityScorecard, etc.) 2	Score indicating high risk (BitSight, SecurityScorecard, etc.) 3	Score indicating high risk (BitSight, SecurityScorecard, etc.) N/A	Score indicating high risk (BitSight, SecurityScorecard, etc.) 5	Score indicating high risk (BitSight, SecurityScorecard, etc.) 6	Score indicating high risk (BitSight, SecurityScorecard, etc.) Hi
Recent Breach at the Partner/Prospect	Recent Breach at the Partner/Prospect Lo	Recent Breach at the Partner/Prospect 2	Recent Breach at the Partner/Prospect 3	Recent Breach at the Partner/Prospect N/A	Recent Breach at the Partner/Prospect 5	Recent Breach at the Partner/Prospect 6	Recent Breach at the Partner/Prospect Hi
Regulator action against partner/prospect	Regulator action against partner/prospect Lo	Regulator action against partner/prospect 2	Regulator action against partner/prospect 3	Regulator action against partner/prospect N/A	Regulator action against partner/prospect 5	Regulator action against partner/prospect 6	Regulator action against partner/prospect Hi

Question Title

* 3. CONTROLS: Please identify frequency of use with partners of the controls listed below (1=NEVER)

	1	2	3	4	5	6	7
Remote interviews of partner (phone, webinar, etc.)	Remote interviews of partner (phone, webinar, etc.) 1	Remote interviews of partner (phone, webinar, etc.) 2	Remote interviews of partner (phone, webinar, etc.) 3	Remote interviews of partner (phone, webinar, etc.) 4	Remote interviews of partner (phone, webinar, etc.) 5	Remote interviews of partner (phone, webinar, etc.) 6	Remote interviews of partner (phone, webinar, etc.) 7
On-site visits to partner facilities	On-site visits to partner facilities 1	On-site visits to partner facilities 2	On-site visits to partner facilities 3	On-site visits to partner facilities 4	On-site visits to partner facilities 5	On-site visits to partner facilities 6	On-site visits to partner facilities 7
Encrypted Communications	Encrypted Communications 1	Encrypted Communications 2	Encrypted Communications 3	Encrypted Communications 4	Encrypted Communications 5	Encrypted Communications 6	Encrypted Communications 7
Firewall Isolated Networks	Firewall Isolated Networks 1	Firewall Isolated Networks 2	Firewall Isolated Networks 3	Firewall Isolated Networks 4	Firewall Isolated Networks 5	Firewall Isolated Networks 6	Firewall Isolated Networks 7
Multifactor authentication	Multifactor authentication 1	Multifactor authentication 2	Multifactor authentication 3	Multifactor authentication 4	Multifactor authentication 5	Multifactor authentication 6	Multifactor authentication 7
User activity real-time monitoring (IDS, UBA, etc.)	User activity real-time monitoring (IDS, UBA, etc.) 1	User activity real-time monitoring (IDS, UBA, etc.) 2	User activity real-time monitoring (IDS, UBA, etc.) 3	User activity real-time monitoring (IDS, UBA, etc.) 4	User activity real-time monitoring (IDS, UBA, etc.) 5	User activity real-time monitoring (IDS, UBA, etc.) 6	User activity real-time monitoring (IDS, UBA, etc.) 7
Custom application protection (e.g. WAF, CASB, etc.)	Custom application protection (e.g. WAF, CASB, etc.) 1	Custom application protection (e.g. WAF, CASB, etc.) 2	Custom application protection (e.g. WAF, CASB, etc.) 3	Custom application protection (e.g. WAF, CASB, etc.) 4	Custom application protection (e.g. WAF, CASB, etc.) 5	Custom application protection (e.g. WAF, CASB, etc.) 6	Custom application protection (e.g. WAF, CASB, etc.) 7
Custom data protection (e.g. DLP, DRM, etc.)	Custom data protection (e.g. DLP, DRM, etc.) 1	Custom data protection (e.g. DLP, DRM, etc.) 2	Custom data protection (e.g. DLP, DRM, etc.) 3	Custom data protection (e.g. DLP, DRM, etc.) 4	Custom data protection (e.g. DLP, DRM, etc.) 5	Custom data protection (e.g. DLP, DRM, etc.) 6	Custom data protection (e.g. DLP, DRM, etc.) 7
Emulation, virtualization, containerization, etc.	Emulation, virtualization, containerization, etc. 1	Emulation, virtualization, containerization, etc. 2	Emulation, virtualization, containerization, etc. 3	Emulation, virtualization, containerization, etc. 4	Emulation, virtualization, containerization, etc. 5	Emulation, virtualization, containerization, etc. 6	Emulation, virtualization, containerization, etc. 7
3rd party online scoring service	3rd party online scoring service 1	3rd party online scoring service 2	3rd party online scoring service 3	3rd party online scoring service 4	3rd party online scoring service 5	3rd party online scoring service 6	3rd party online scoring service 7

Question Title

* 4. CONTROLS: Please identify importance of use with partners of the controls listed below (1=not at all)

	1	2	3	4	5	6	7
Remote interviews of partner (phone, webinar, etc.)	Remote interviews of partner (phone, webinar, etc.) 1	Remote interviews of partner (phone, webinar, etc.) 2	Remote interviews of partner (phone, webinar, etc.) 3	Remote interviews of partner (phone, webinar, etc.) 4	Remote interviews of partner (phone, webinar, etc.) 5	Remote interviews of partner (phone, webinar, etc.) 6	Remote interviews of partner (phone, webinar, etc.) 7
On-site visits to partner facilities	On-site visits to partner facilities 1	On-site visits to partner facilities 2	On-site visits to partner facilities 3	On-site visits to partner facilities 4	On-site visits to partner facilities 5	On-site visits to partner facilities 6	On-site visits to partner facilities 7
Encrypted Communications	Encrypted Communications 1	Encrypted Communications 2	Encrypted Communications 3	Encrypted Communications 4	Encrypted Communications 5	Encrypted Communications 6	Encrypted Communications 7
Firewall Isolated Networks	Firewall Isolated Networks 1	Firewall Isolated Networks 2	Firewall Isolated Networks 3	Firewall Isolated Networks 4	Firewall Isolated Networks 5	Firewall Isolated Networks 6	Firewall Isolated Networks 7
Multifactor authentication	Multifactor authentication 1	Multifactor authentication 2	Multifactor authentication 3	Multifactor authentication 4	Multifactor authentication 5	Multifactor authentication 6	Multifactor authentication 7
User activity real-time monitoring (IDS, UBA, etc.)	User activity real-time monitoring (IDS, UBA, etc.) 1	User activity real-time monitoring (IDS, UBA, etc.) 2	User activity real-time monitoring (IDS, UBA, etc.) 3	User activity real-time monitoring (IDS, UBA, etc.) 4	User activity real-time monitoring (IDS, UBA, etc.) 5	User activity real-time monitoring (IDS, UBA, etc.) 6	User activity real-time monitoring (IDS, UBA, etc.) 7
Custom application protection (e.g. WAF, CASB, etc.)	Custom application protection (e.g. WAF, CASB, etc.) 1	Custom application protection (e.g. WAF, CASB, etc.) 2	Custom application protection (e.g. WAF, CASB, etc.) 3	Custom application protection (e.g. WAF, CASB, etc.) 4	Custom application protection (e.g. WAF, CASB, etc.) 5	Custom application protection (e.g. WAF, CASB, etc.) 6	Custom application protection (e.g. WAF, CASB, etc.) 7
Custom data protection (e.g. DLP, DRM, etc.)	Custom data protection (e.g. DLP, DRM, etc.) 1	Custom data protection (e.g. DLP, DRM, etc.) 2	Custom data protection (e.g. DLP, DRM, etc.) 3	Custom data protection (e.g. DLP, DRM, etc.) 4	Custom data protection (e.g. DLP, DRM, etc.) 5	Custom data protection (e.g. DLP, DRM, etc.) 6	Custom data protection (e.g. DLP, DRM, etc.) 7
Emulation, virtualization, containerization, etc.	Emulation, virtualization, containerization, etc. 1	Emulation, virtualization, containerization, etc. 2	Emulation, virtualization, containerization, etc. 3	Emulation, virtualization, containerization, etc. 4	Emulation, virtualization, containerization, etc. 5	Emulation, virtualization, containerization, etc. 6	Emulation, virtualization, containerization, etc. 7
3rd party online scoring service	3rd party online scoring service 1	3rd party online scoring service 2	3rd party online scoring service 3	3rd party online scoring service 4	3rd party online scoring service 5	3rd party online scoring service 6	3rd party online scoring service 7

Question Title

* 5. COMMON OUTCOMES: How often do the following occur (1=never happens; 7=always happens)

	1	2	3	4	5	6	7
Your org rejects a 3rd party due to inadequate security	Your org rejects a 3rd party due to inadequate security 1	Your org rejects a 3rd party due to inadequate security 2	Your org rejects a 3rd party due to inadequate security 3	Your org rejects a 3rd party due to inadequate security 4	Your org rejects a 3rd party due to inadequate security 5	Your org rejects a 3rd party due to inadequate security 6	Your org rejects a 3rd party due to inadequate security 7
Your org identifies a security/control issue with 3rd party	Your org identifies a security/control issue with 3rd party 1	Your org identifies a security/control issue with 3rd party 2	Your org identifies a security/control issue with 3rd party 3	Your org identifies a security/control issue with 3rd party 4	Your org identifies a security/control issue with 3rd party 5	Your org identifies a security/control issue with 3rd party 6	Your org identifies a security/control issue with 3rd party 7
Your org identifies a possible breach due to 3rd party	Your org identifies a possible breach due to 3rd party 1	Your org identifies a possible breach due to 3rd party 2	Your org identifies a possible breach due to 3rd party 3	Your org identifies a possible breach due to 3rd party 4	Your org identifies a possible breach due to 3rd party 5	Your org identifies a possible breach due to 3rd party 6	Your org identifies a possible breach due to 3rd party 7
How often do any of 1,2,3 above happen to your org?***	How often do any of 1,2,3 above happen to your org?*** 1	How often do any of 1,2,3 above happen to your org?*** 2	How often do any of 1,2,3 above happen to your org?*** 3	How often do any of 1,2,3 above happen to your org?*** 4	How often do any of 1,2,3 above happen to your org?*** 5	How often do any of 1,2,3 above happen to your org?*** 6	How often do any of 1,2,3 above happen to your org?*** 7
Your org select a 3rd party due to superior security	Your org select a 3rd party due to superior security 1	Your org select a 3rd party due to superior security 2	Your org select a 3rd party due to superior security 3	Your org select a 3rd party due to superior security 4	Your org select a 3rd party due to superior security 5	Your org select a 3rd party due to superior security 6	Your org select a 3rd party due to superior security 7

Question Title

* 6. COMPARE: How does your company’s security rate compared to your avg 3rd party business partner?

Much Lower

Lower

Same

Higher

Much Higher