ABSTRACT
Organizational formations face constant pressure to achieve and maintain a competitive edge in the marketplace. Capabilities logic reflects the general premise that one firm can outperform another if it has a superior ability to develop, use, and protect the essential platform competencies and resources. Nonetheless, if an entity discovers the necessary resources and capabilities are unavailable during the planning phase, outsourcing the operational or IT function may be a viable course of action to pursue. Correspondingly, information security is a management issue that requires an end-to-end view of organizational processes. Chapter 6 discusses supply chain partners and managed service providers considering IAP risks. Chapter 6 also presents critical service provider audit issues.
