Mastering the third-party risk management lifecycle
Managing third parties is more than a one-time assessment. It is a relationship that must be managed throughout the third-party risk management (TPRM) lifecycle, from screening, onboarding, assessment, risk mitigation, monitoring, and offboarding.
AI for Third-party Risk Management
In many people’s minds, artificial intelligence (AI) is associated with self-driving cars or anthropomorphic characterizations like C-3PO from Star Wars or HAL, the murderous computer in “2001: A Space Odyssey.” So when vendors start talking about using AI for TPRM, many people envision a scenario in which they give up user control of the system and put the technology in charge of the process. In fact, a practical and strategic approach to AI doesn’t replace human intelligence at all; it reflects, refines, and complements it, so that humans are more efficient at making better decisions that result in better outcomes.
Using GRC to Get Both Compliance and Real Security at the Same Time
Organizations like yours use regulatory guides and compliance frameworks as the foundation of their list of controls. You can easily have many hundreds to thousands of controls to create and manage.
2022 IT Compliance Benchmark Report
A look at how companies manage IT risks and compliance efforts in a time when requirements are increasing in complexity.
Your journey to continuous compliance
In this eBook you’ll learn how to successfully complete these tasks with and without compliance software. This way, you can decide which path to compliance makes the most sense for you and your business.
Facilitating Data Loss Prevention with Netwrix Solutions
This eBook explains what data loss prevention is and how to find the right DLP approach for your organization. Then it explores how Netwrix solutions support the DLP needs of many organizations.
Best Practice Guide to Implementing the Least Privilege Principle
Applying the principle of least privilege is hard, even for organizations with high incentives to be secure.
Teaming Up to Solve Third-Party Risk
How to Plan When You Don’t Know What You Don’t Know.
The Forrester Wave™: Third-Party Risk Management Platforms, Q2 2022
In our 27-criterion evaluation of third-party risk management (TPRM) platform providers, we identified the 12 most significant ones — Aravo, Archer, Coupa, Diligent, LogicGate, LogicManager, MetricStream, NAVEX, OneTrust, Prevalent, ProcessUnity, and ServiceNow — and researched, analyzed, and scored them.
Aligning Internal Cybersecurity Practices with External Third-Party Risk Management
Recent trends indicate that it’s no longer enough to only address cybersecurity internally. Cybercriminals are rapidly advancing their tactics by targeting an organization’s third parties, vendors and suppliers – and it’s working.
Critical Vulnerabilities Discovered in Popular Automotive GPS Tracking Device
In BitSight discovered six severe vulnerabilities in the MiCODUS MV720 GPS tracker, a popular automotive tracking device designed for vehicle fleet management and theft protection for consumers and organizations.
Kickstart Guide to Implementing the NIST Cybersecurity Framework
The NIST CSF is made up of core, tiers and profiles. The core is the bulk of the NIST CSF and is made up of five categories and 108 sub-categories. Tiers help you measure maturity, and profiles help you set priorities.
Closing the Gaps in Your Ransomware Strategy
Cybercrime is one of the leading causes of data center downtime, and when a business is hit with a ransomware attack, the losses can be staggering.
An Executive's Guide to Ransomware Protection as a Service
To help you find the information and insights you’re looking for, we’ve divided this eBook into three sections:
