default Download

This report analyzes independent data gathered on over 800 multi-party cyber incidents observed over the last decade.

pdf Download (966 KB)

Third-party risk management (TPRM) isn’t a new concept, however, recent events have brought the discipline into the forefront like never before. Organizations in all industries rely on third parties, whether they be cloud service providers, suppliers, contractors, and other vendors.

pdf Download (2.19 MB)

How to rethink your policies, processes, and plans to mitigate cyber risk in an increasingly remote workforce.

pdf Download (3.69 MB)

In this white paper, we take a closer look at corporate-associated residential IP addresses (WFH-RO IPs) and discover attributes that pose uniquecybersecurity risks as compared to in-office corporate networks.

View

While third-party relationships undoubtedly add business value, they also introduce significant new risk and compliance challenges for organizations. On top of that, as vendor ecosystems grow in size and complexity, risk management teams are increasingly struggling to procure and maintain high-quality, real-time external data to feed their governance, risk, and compliance (GRC) technology.

pdf Download (1.96 MB)

While many enterprises have taken tremendous strides in recent years to measure and manage the cyber risk present within their own IT systems, they struggle to extend that vigilance to third-party risk.

pdf Download (979 KB)

Cybersecurity risk ratings are rapidly becoming a critical component of third-party cyber risk management programs. Security leaders are beginning to use them to find quantitative data to scrutinize the statements made about security by their third parties, supporting business critical commercial discussions and risk decisions. Increasingly, security leaders are seeking to operationalize this data to build more robust information from which they can base their risk management decisions upon.