George E. 🇺🇸♥🇺🇦🇵🇸🏳️‍🌈🏳️‍⚧️<p>Makes you wonder if <a href="https://bofh.social/tags/McDonalds" rel="nofollow noopener" target="_blank">#McDonalds</a> even has a <a href="https://bofh.social/tags/VendorManagement" rel="nofollow noopener" target="_blank">#VendorManagement</a> program or hell an <a href="https://bofh.social/tags/InfoSec" rel="nofollow noopener" target="_blank">#InfoSec</a><span> program for that matter.<br><br>Do they even conduct </span><a href="https://bofh.social/tags/SecurityAudits" rel="nofollow noopener" target="_blank">#SecurityAudits</a> of their vendors? Do they have an <a href="https://bofh.social/tags/ArchitectureReviewBoard" rel="nofollow noopener" target="_blank">#ArchitectureReviewBoard</a><span> for new projects and initiatives?<br><br>Why aren't baseline/ minimum </span><a href="https://bofh.social/tags/SecurityStandards" rel="nofollow noopener" target="_blank">#SecurityStandards</a><span> spelled out in their SOWs?<br><br>None of this is rocket-science, or even that costly, but you have to be willing to put forth the effort.<br><br></span><a href="https://yro.slashdot.org/story/25/07/09/2014234/mcdonalds-ai-hiring-bot-exposed-millions-of-applicants-data-to-hackers" rel="nofollow noopener" target="_blank">https://yro.slashdot.org/story/25/07/09/2014234/mcdonalds-ai-hiring-bot-exposed-millions-of-applicants-data-to-hackers</a></p>