Resilience.etc recommends a tailored Vendor Resilience Practice by designing and end-to-end Implementation of Outsourcing and Vendor Resilience Practice, with Mapping of Critical Vendors, Vendor Resilience Strtegies, Design and Development of Resilience Capabilities, Mitigation of Vendor Risks, Auditing, Exercising and Maintainance of Resilience.
Risk to be Mitigated: Failure of Service Provider
It shall be ensured that «Critical» Service Providers are able to deliver the required service. This includes having their own documented and tested Operational plans in place and the capacity to support the activation of the Operational Resilience Plan and Practices.
A process shall be established to evaluate the capacity and capability of the service provider before engaging their services, as well as continuously monitoring and reviewing the ability of the service provider after the engagement.