Read about the latest cybersecurity news and get advice on third-party vendor risk management, reporting cybersecurity to the Board, managing cyber risks, benchmarking security performance, and more.
Prioritizing vendors based on risk is considered a vendor risk management best practice. But how do you do this? To start, let’s look at a commonly referred-to equation:
When most people think about mitigating cyber risk from their business service providers, they usually think of their banks, IT service providers, or their software manufacturers.
Last month, the Office of Personnel Management revealed the true extent of it’s mega data breach - 21.4 million Americans. This means that around 7% of all Americans are affected by this breach. Lawmakers are beginning to debate how the...
If you’re just starting out with vendor risk management, you probably have a lot of questions about security. You might be wondering, “Which companies should be on my radar? Am I supposed to monitor all of my vendors, or just a few of...
When you think of an audit, what comes to mind? If you’re at all familiar with the traditional auditing process, I’d imagine your answer would look something like this:
