pdf Download (1.54 MB)

This report (re)uses the same data set behind the Internet Risk Surface Report. It is derived from RiskRecon’s work in providing companies objective visibility into their third-party cybersecurity risk. For each organization analyzed, RiskRecon trains machine learning algorithms to discover internet facing systems, domains, and networks. For every asset discovered, RiskRecon analyzes the publicly accessible content, code, and configurations to assess system security and the inherent risk value of the system based on attributes such as observable data types collected and transaction capabilities. RiskRecon provided Cyentia a large anonymized sample of their production data set for this research.

pdf Download (1.75 MB)

In this white paper, learn more about why cybercriminals prioritize data hacking for financial gain, how your company can protect itself from a breach, and how data minimization practices can reduce the risks of cyber attacks and save you money.

pdf Download (1.69 MB)

The members of the Better Identity Coalition came together to create a set of consensus, cross-sector, technology agnostic policy recommendations for improving identity in America.

pdf Download (712 KB)

A Comprehensive Guide to Managing Password Reset Risk with Identity Verification.

pdf Download (1.02 MB)

As organizations grow, the number of vendors on which they rely increases to form a complex ecosystem. Many cyber attacks, however, are launched through third-party vendors.

pdf Download (335 KB)

Building new digital relationships with third-parties increases exposure to a cybersecurity breach.

pdf Download (292 KB)

In December 2018, privacy management provider OneTrust announced a partnership with the Cloud Security Alliance (CSA) and the availability of free vendor risk assessment capabilities to all CSA members. In the era of the EU's General Data Protection Regulation (GDPR) and similar proliferating data protection regulations around the globe, the enterprise's capacity to evaluate its vendors and partners grows in importance.

pdf Download (1.50 MB)

In this paper, we’ll reveal a practical alternative that helped our client move from 89 steps to three.

pdf Download (129 KB)

Organizations are investing in digital technologies to drive business into the future. This also means they’re increasingly reliant on third-party vendors for outsourced services and solutions—expanding their attack surface and introducing more risk.

pdf Download (4.45 MB)

If your company employs third parties, then the responsibility falls to you and your employees to manage the risk they bring. But how do you go about designing and implementing your third-party risk management program for maximum effectiveness?

pdf Download (461 KB)

Today’s access controls are usually enforced at the application level which means each access-control regimen is effectively “siloed” – one can’t “see” the other. It’s challenging enough to manage access within a single application. Managing that kind of access across all enterprise applications, across thousands of users, and across multiple business processes - the scale of complexity skyrockets. And adding to that complexity is that these applications may be on premise or in the cloud.

default Download

API security is increasingly difficult for enterprise security teams to tackle. APIs are spreading fast and are a tempting target for cyberattacks. Learn about the challenges overwhelming security teams today that can be overcome with an intelligent API security solution.

pdf Download (239 KB)

Identify your risks to jump-start an A-class risk mitigation program.