Creating RFPs for security solutions and processing the responses is not an easy task. Having responded to a fair number of such RFPs, I found that many of them are created hastily, and don’t allow the issuer to benefit from quality responses.
Here's my list of the top 10 mistakes organizations make when crafting a security RFP:
If you found this list useful, you may also like the brief "cheat sheet" I created for issuing RFPs specific to information security assessments.
Lenny Zeltser - Security Consulting
Lenny teaches a SANS course on analyzing malware.
Jan 9th 2009
1 decade ago