The financial sector relies on a complex web of technology providers—but many of these third parties present hidden and under-monitored cyber risks. Bitsight analyzed over 41,000 financial organizations and 50,000 vendor relationships to identify the most critical suppliers and assess their cybersecurity performance. The findings reveal systemic risk, poor security hygiene among key vendors, and significant monitoring gaps across the sector.
Key Takeaways
- Bitsight identified the 99 most critical third-party suppliers to the financial sector
- Some of the largest vendors have the weakest security performance
- Unmonitored suppliers have 2.9x more critical CVEs and 2.8x more KEVs
- Financial institutions monitor only 36.3% of their vendors on average
- Continuous monitoring correlates with improved visibility and stronger risk communication
Download the full report to understand where your greatest supply chain risks may be hiding—and how to proactively reduce exposure.
"Our goal with this research is to highlight the hidden pillars of the financial sector so that the work can be done to remediate risk and improve resilience across the sector."
Jake Olcott VP of Communications and Government Affairs Bitsight |
