Skip to main content

This chapter of the ISM provides guidance on outsourcing.

Outsourcing can be a cost-effective option for providing information technology and cloud services. However, third-party risks can be introduced as a consequence and should be appropriately managed. This chapter outlines selecting, managing, using and reviewing these services.