Vendor Risk Management Insights


      Subscribe to our blog

      Security never sleeps. Get the most up-to-date information by subscribing to the RiskRecon blog.


      2022 Risk Surface Findings: 300x Better is a BIG Deal

      We’ve examined a lot of factors that tell us how each organization’s risk surface is dependent on the choices that it makes, regardless of ...

      Risk Surface KPIs: Do cloud adoption rates impact your risk surface?

      During this blog post, we examine how a couple of factors - cloud adoption rate and technology footprint - impact an organization's risk surface.  ...

      Risk Surface KPIs: Are your assets being hosted in a secure location?

      In this article, we continue our look a the key performance indicators from our recent study on how organizations are navigating the internet risk surface. We will look specifically at how asset ...

      Risk Surface KPIs: Should industry weigh more in assessments?

      When we think about risk, we also have to acknowledge and account for the inherent risk that is posed to your organization before any mitigation controls. The idea of inherent risk centers around ...

      Digital Operational Resilience Act (DORA) and How RiskRecon Can Help

      Recap: What is DORA? In September 2020, the European Commission published a

      Defining Top & Bottom Performs in our Risk Surface Research

      As we started to dive into our research on how firms are managing their internet risk surface exposure, we first sought to identify what separates the top and bottom performers and decided to ...

      Are US Cities Meeting Third-Party Risk Challenges?

      It is virtually impossible to operate a business, organization, or local government these days without reliance on third parties or third-party tools. While many relationships with third-party ...

      Security Issues and Trends from US Cities

      RiskRecon enables organizations to monitor their cybersecurity risks through open-source intelligence techniques. In addition to the alphanumeric ratings, RiskRecon also identifies specific ...

      Understanding How to Navigate the Risk Surface

      The world is complex, and ultimate control may be beyond our grasp; yet our decisions – what we eat, where we go, how we do business, and why we turn in one direction instead of another – still ...

      Joint Advisory on Weak Security Controls (AA22-137A)

      On May 17, 2022, the cybersecurity authorities of the United States, Canada, New Zealand, the Netherlands, and the United Kingdom published a joint Cybersecurity Advisory on