- Why BitSight?
“So, what has all this investment done for us? Well, the problem is if you look at the threat landscape, it doesn't feel like it's done a whole lot for us, right? In 2017, there were over 53,000 security incidents. There were over 2,000 data breaches in over 65 countries, all of it with unprecedented implications. We saw with Mirai Botnet that your toaster could be turned into an attack vector to take down Twitter. And yet, we still are connecting devices to the internet at an unprecedented rate. J.P. Morgan, Yahoo, Equifax, basically the entire Western world, has been breached. Phishing is fascinating too. And I think someone touched on this earlier.”
“And, of course, enterprises have to think about this as risk management to protect the things that matter most. And once we start connecting the dots, right, as government and industry start coming together, we all have information. Sharing that information becomes more valuable. That's when we really close the gap.”
Thanks to Niloofar and Venky for an insightful discussion.
There are numerous areas of business and enterprise risk that have been measured for years in a standardized fashion — these include financial risk, market risk, operational risk, legal risk, and even IT risk.
Big risks can come from small, sometimes unexpected places. When compared to all the other vendors you need to manage, you might not think of an image container for apps as a high priority — but the recent breach of Docker Hub shows...
Recently, BitSight and the Center for Financial Professionals (CeFPro) released a joint report that explores how financial services organizations are addressing challenges associated with third-party cyber risk management.