Third Deadly Sin: Not measuring and reporting risk and risk outcomes

Posted by RiskRecon on Oct 18, 2018 8:00:00 AM

 

We’re running a blog post series on the “Seven Deadly Sins of Third-Party Cyber Risk Management;” here’s the third deadly sin, which is not measuring and reporting risk and risk outcomes.

Read More

Topics: Vendor Risk Management, Vendor Security, Third Party Risk

Second Deadly Sin: Failing to make third-party risk management about business risk management

Posted by RiskRecon on Oct 16, 2018 8:00:00 AM

 

We’re running a blog post series on the “Seven Deadly Sins of Third-Party Cyber Risk Management;” here’s the second deadly sin, which is failing to make third-party risk management about business risk management.

Read More

Topics: risk exposures, Vendor Risk Management, 3rd party risk management

RiskRecon Announces the Invention of Ground-Breaking Asset Risk Valuation Algorithms, Transforming How Enterprises Manage Third-Party Cyber Risk

Posted by RiskRecon on Oct 15, 2018 8:01:00 AM

 

Today RiskRecon announced its ground-breaking asset valuation algorithms that automatically determine the inherent risk value of any Internet-facing system. These new algorithms solve the cyber risk equation by automatically determining the risk value of computer systems, enabling precise cyber risk assessment and action

Read More

Topics: Continuous Monitoring, Vendor Risk Management, Security Ratings

Blog Post Series: The Seven Deadly Sins of Third-Party Cyber Risk Management

Posted by RiskRecon on Oct 12, 2018 10:09:00 AM

 

The ‘seven deadly sins’ are a classification scheme established by the Roman Catholic church in the 15th century. It is these seven sins from which they believe all immorality is rooted — pride, greed, lust, envy, gluttony, wrath, and sloth. Similar to the religious seven deadly sins, we have enumerated the seven deadly sins of third-party cyber risk management. It is from these sins that programs fail to lift off the ground, die a slow death, or limit the value they provide to the organization. Let’s take a look.

Read More

New Enhancements to RiskRecon Portfolio Dashboard

Posted by RiskRecon on Oct 10, 2018 5:07:25 PM

 

RiskRecon has rolled out an update of the portfolio dashboard page to customers, which provides enhanced insights into their RiskRecon portfolios, built with active information widgets that facilitate viewing additional information and easy linking to vendor security profiles. The dashboard continues to be filterable based on customers’ portfolio organization.

Read More

Topics: Vendor Risk Management, 3rd party risk management

Lockpath and RiskRecon Further Partnership to Increase Third-Party Risk Visibility

Posted by RiskRecon on Sep 18, 2018 11:31:11 AM

 

Lockpath, a leading provider of integrated risk management solutions, today announced the availability of the integration between its award-winning Keylight Platform and RiskRecon, a SaaS-based third-party cyber risk monitoring solution that delivers objective insights into third-party security performance and IT landscape. This product integration aims to enable precise, efficient reduction and elimination of organizations’ most critical third party security gaps.

Read More

Topics: Vendor Risk Management, Vendor Security, Third Party Risk

RiskRecon Advisor Yong-Gon Chon Shares Cybersecurity Tips

Posted by RiskRecon on Aug 30, 2018 2:56:12 PM

 

In a recent article in the ABA Journal, noted cybersecurity expert and RiskRecon Advisor, Yong-Gon Chon, shared his thoughts on what law firms can do to bolster their cybersecurity. In particular, Chon suggests learning from other industries. For example, law firms can look to financial institutions, which have long struggled with protecting data as required under the Gramm-Leach-Bliley Act, he said. Data protection is key.

Read More

Topics: Vendor Risk Management, 3rd party risk management, risk measurements, Vendor Security, Third Party Risk

CEO of RiskRecon Weighs in on Vendor Risk Management

Posted by RiskRecon on Jul 10, 2018 11:48:49 AM

 

RiskRecon CEO and Founder Kelly White talks to Data Breach Today about a new initiative by the Cyber Readiness Institute that aims to address vendor risk by promoting to smaller enterprises the cybersecurity best practices used by Fortune 500 companies.

Read More

Topics: Vendor Risk Management, Vendor Security

Who’s Monitoring Your Third-Party Vendors for Cyber Risk?

Posted by RiskRecon on Jul 6, 2018 4:07:55 PM

 

Exactis Data Leak Illustrates the Enormity of an Organization’s Potential Third-Party Cyber Risk

With hundreds and thousands of complex, highly interdependent, Internet-connected systems, it’s no wonder that an enterprise’s potential third-party cyber risk has multiplied in recent years. 

Read More

Topics: Vendor Security, Third Party Risk

You Can’t Manage What You Can’t Measure – Integrating Risk Formulas into Your Cyber Risk Management Framework

Posted by Kelly White on Jul 2, 2018 11:37:06 AM

 

By Kelly White | July 2, 2018 

Calculating cyber risk is a key element of any sound risk management strategy. While traditional risk management models have focused on financial, process, workplace and IT factors, for many organizations cyber risk is still a new component in their risk assessment practices. Yet issues such as accurately measuring exposure, understanding the correct level of security spend, and whether or not to buy cyber insurance (and how much to buy) depend on hard numbers. How do you tackle quantifying these concerns in practical business terms?

Read More

Topics: Vendor Risk Management, Vendor Security, Third Party Risk