Vendor Risk Management Insights

    iconemail-box

    Subscribe to our blog

    Security never sleeps. Get the most up-to-date information by subscribing to the RiskRecon blog.

    Are larger or smaller companies hit by breach events more often?

    Are large or small companies impacted more by breach events?

    In this blog, we examine the role of company size in

    Third-Party Risk 101

    What does it mean to be a third party? A third party is an outside group that becomes involved in a situation between two groups. Businesses use third-party vendors for several reasons. ...

    Third Party Risk Management

    A third party entity is any business or organization that collaborates with your business or company. This third party usually provides a service or product directly to your company or indirectly ...
    NIST-Standards-250

    Identifying the Most Common Security Issues Causing Noncompliance

    Recently, RiskRecon and the Cyentia Institute launched a research report called,
    CIty-Hall-Blog-3-250

    Are US Cities Meeting Third-Party Risk Challenges?

    It is virtually impossible to operate a business, organization, or local government these days without reliance on third parties or third-party tools. While many relationships with third-party ...
    accepting-risk250

    Are CISO’s or Boards paying attention to third-party risk now?

    Recently, RiskRecon, a Mastercard Company, founder Kelly White, sat down with Sam Olyaei, Director at Gartner Research, and Errol Weiss, Chief Security Officer at Health-ISAC, to discuss their ...
    Healthcare-Supply-Chain-Blog-250

    Risk Surface of the Healthcare Supply Chain

    While the types of organizations covered in a previous post officially fall under the Healthcare ...

    When TLS Problems Signal Broader Security Hygiene Flaws

    As organizations examine their vendor relationships with an eye toward cyber risk, there's rarely a single factor that would tell a decision-maker that any given third-party is too risky to do ...
    Observing Malicious Activity

    RiskRecon Observed Malicious Activity During the COVID-19 Pandemic

    By: Jonathan Ehret, Vice President of Strategy & Risk, RiskRecon The onset of the COVID-19 pandemic has brought many changes to our world. ...

    Third-Party Risk Management and ISO 20071

    In mid-2019, a medical testing company was informed by one of its vendors that the vendor had experienced a significant data breach. This data breach involved ...