BITSIGHT SECURITY RATINGS BLOG

Read about the latest cybersecurity news and get advice on third-party vendor risk management, reporting cybersecurity to the Board, managing cyber risks, benchmarking security performance, and more.

FFIEC IT Handbook Updates: Business Continuity Is 2020 Focus

In November 2019, the Federal Financial Institutions Examination Council (FFIEC) released an update to the Information Technology Examination Handbook (IT Handbook). This handbook is a guide for examiners at its member agencies, which...

READ MORE »

Guide: Fourth-Party Cyber Risk & Management

In today’s interconnected world, supply chains are growing exponentially. As a result, third-party risk has become a big focus for senior management. But what about the vendors that your suppliers rely on and the threat of fourth-party...

READ MORE »

What You Need To Know About Fourth Party Vendor Risk

Over the last few years, awareness of the importance of monitoring third-party vendors has increased. You have likely heard—and agree—that because of how interconnected organizations are today, it’s critical to make sure your vendors...

READ MORE »

DNS Outage Sheds Light on Service Provider Reliance and Cyber Risk Aggregation

Written with the assistance of Dan Dahlberg, Ethan Geil, and Ross Penkala.

Last Friday morning, a distributed denial of service (DDoS) attack was carried out against Dyn, a managed DNS provider that offers Internet services for Twitter,...

READ MORE »

The Underlying Threat to the Supply Chain: Cloud Service Providers

Organizations have come to depend on cloud service providers for key services - from email and domain registrars, to payment processors and certificate authorities. According to the 2015 Cloud Computing Survey by IDG, 72% of organizations...

READ MORE »
Load More

Subscribe to get security news and updates in your inbox.