Which standard is concerned with enhancing resilience against threats from third-party vendors?

The standard that specifically addresses enhancing resilience against threats from third-party vendors is ISO/IEC 27036-3. This standard is part of the ISO/IEC 27000 family focused on information security management systems.

ISO/IEC 27036-3 provides guidelines for managing information security risks associated with relationships with third-party organizations. It emphasizes the importance of considering the security posture of third-party vendors, which is crucial for maintaining the integrity and confidentiality of an organization's data.

This standard outlines best practices for assessing and mitigating risks that stem from outsourcing services or working with vendors, addressing how organizations can foster secure collaborations and protect themselves from potential vulnerabilities introduced by third parties.

Other options may focus on broader aspects of information security management, but only ISO/IEC 27036-3 delves into the specifics of third-party vendor relationships and their associated risks.