Show:
TPRM Lifecycle
TCCL
Team Ross
CSO
Misc.
100

Originally with around 350 questions, this is the questionnaire used conduct vendor due diligence

What is ConQ?

100

This is our primary contact for TCCL related changes

Who is Parthiv Dalal?

100

This is our newest Team Ross member.

Who is Tala Kseibi? 

100

These are the formal policies and standards that govern information security practices across AT&T, ensuring compliance and protection of data and systems.

What is ASPS?

100

Scarlet, Crimson, and Vermillion are all shades of this primary color

What is red?

200

These are the five phases of the lifecycle

What are:
Vendor Selection and Due Diligence
Contracting
Onboarding
Ongoing Monitoring
Offboarding/Termination

200

These are the approximate number of controls that Yi has to consider on a daily basis (number of controls under Cyber Security Management)

What is 410 (~400 is fine)?
200

This Team Ross member is Puerto-Rican Italian

Who is Nia Luckey?

200

Under Rich Baich, this important person has a rather different title than Vice President, Expert, or Director.

Who is Jason Hamilton (Deputy CISO)

200

A green light shines for Daisy in this novel-turned-movie set in the 1920s.

What is the Great Gatsby?

300

Even though many suppliers would like to go through negotiations on the terms of it, this clause is frequently non-negotiatiable to include

What is SISR?

300

Rather than coexist with our sister team (Cyber Security Management) in the L1 Technology Management, this is the actual L1 for Third Party Management

What is Process and Service Delivery?

300

Only one cup of coffee a day for this Team Ross member, but decafs don't count

Who is Yi Liu?

300

P2B and P2O are designed to integrate seamlessly with existing development workflows and complement this central entry point.

What is the ATS Unified Front Door?

300

This major competitor of OpenAI is currently a privately owned company, but plans to make its public debut soon

What is Anthropic?

400

Closely related to the TPRM lifecycle, this adjacent lifecycle refers to the management of broader supplier relationships. 

What is the Third Party Management (TPM) lifecycle?
400

This could either refer to an L3 control OR a control domain!

What is Identity and Access Management?

400

Are you traveling to the Maldives or the Middle East? Doesn't matter, ask this Team Ross member for advice

Who is Zak Melhem?

400

Used by AT&T, this requires users to verify their identity using two or more factors to securely access company applications

What is Microsoft Entra ID?

400

Apart from the Sun, this is the closest star to us

What is Proxima Centauri?

500

Supplier data is displayed on the supplier inventory dashboard, but this is the larger source of all of supply chain's data

What is DNA?

500
This is the domain assigned to many controls that are otherwise ungrouped. 

What is CCF Not Applicable?

500

Follow the PER process and do not contact these two if your problem is an individual security vulnerability

Who are Ariel Allensworth and Elzar Camper?

500

This tool/process aims to reduce/eliminate the risk to AT&T caused by end users accidentally or maliciously sharing sensitive or critical AT&T Information. 

What is Data Leakage Prevention (DLP)?

500

Amharic is the official language of this country

What is Ethiopia?