<img height="1" width="1" style="display:none" src="https://www.facebook.com/tr?id=1175921925807459&amp;ev=PageView&amp;noscript=1">


Read about the latest cybersecurity news and get advice on third-party vendor risk management, reporting cybersecurity to the Board, managing cyber risks, benchmarking security performance, and more.

Third-Party Risk Management Insights: 2015 Gartner Security & Risk Summit

Last week I attended the annual Gartner Security & Risk Management Summit in beautiful National Harbor, MD. The below photo was taken just before a big storm, but otherwise it was perfect weather.


Best Practices for implementing vendor security ratings

Recently we discussed three benefits for vendors related to their security rating, as we are asked about this often. We are also asked for best practices when communicating with your vendors about their security rating. We have many...


AIG Partners with BitSight To Provide Cyber Insurance Diligence

Today AIG announced a strategic partnership with BitSight to recommend BitSight Security Ratings for Vendor Risk Management to CyberEdge customers. CyberEdge insureds can now benefit from the data-driven insights and continuous monitoring...


Security Ratings: Quality over Quantity (but here are the numbers)

Poor information security can lead to serious, public data breaches for companies and their customers. That's why BitSight Security Ratings are used by companies to evaluate and mitigate information risk. This risk applies to a company's ...


Managing Vendor Risk Complexity: Insights from Financial Institutions

Earlier this week I had the privilege of attending the invitation-only BNY Mellon 2015 Third Party Risk Management Symposium. The keynote speaker was General Keith Alexander, former Director of the National Security Agency. General...


A Data-Driven Approach to Vendor Risk Management

Third party risk has become a hot topic throughout 2014, with no signs of slowing down in 2015.  The WSJ highlighted high-profile breaches stemming from a vendor here and here, and the OCC issued more third party risk guidance.  Steve...


Shellshock Part II: Are Your Third Parties or Vendors Vulnerable?

Last week we wrote about how to assess your risk and reduce your exposure when it comes to Shellshock.  While all other products and vendors are helping customers discover Shellshock within their own environment, we uniquely help customers...

Load More

Subscribe to get security news and updates in your inbox.