Vendor Risk Management Insights

    iconemail-box

    Subscribe to our blog

    Security never sleeps. Get the most up-to-date information by subscribing to the RiskRecon blog.

    Ponemon report blog 2-fig 1- Oct 2022-1

    Ponemon Study: Shortfalls in Third-Party Risk Management Governance

    Sponsored by RiskRecon, a Mastercard Company and conducted by Ponemon Institute,1,162 IT and IT security professionals in North America and Western ...
    Ponemon data risk intro figure 1-1

    An Introduction to the Ponemon Data Risk in TPRM Study

    Organizations are dependent upon their third-party vendors to provide such important services as payroll, software development or data processing. ...
    Whistic-Blog-4-250

    What are the 'must-haves' when building a TPRM program?

    As organizations continue to come to grips with the fact that third-party risks are extremely dangerous to any business regardless of its size or industry - ...
    Whistic-Blog-3-250

    What does a successful TPRM program look like?

    Trading best practices across firms have been a staple in the cybersecurity industry for years. Everyone needs guidance and a helping hand once in a while. The same is true for third-party risk ...
    Whistic-Webinar-Blog-1--250

    What is the state of third-party risk management right now?

    Very recently RiskRecon and Whistic published a report that examines ...
    RiskSurface-Findings-Blog---250

    2022 Risk Surface Findings: 300x Better is a BIG Deal

    We’ve examined a lot of factors that tell us how each organization’s risk surface is dependent on the choices that it makes, regardless of ...
    RiskSurfaceKPIs---Blog-3---16---250

    Risk Surface KPIs: Do cloud adoption rates impact your risk surface?

    During this blog post, we examine how a couple of factors - cloud adoption rate and technology footprint - impact an organization's risk surface. ...
    RiskSurfaceKPIs-2-250

    Risk Surface KPIs: Are your assets being hosted in a secure location?

    In this article, we continue our look a the key performance indicators from our recent study on how organizations are navigating the internet risk surface. We will look specifically at how asset ...
    Risk-Surface-KPis-250

    Risk Surface KPIs: Should industry weigh more in assessments?

    When we think about risk, we also have to acknowledge and account for the inherent risk that is posed to your organization before any mitigation controls. The idea of inherent risk centers around ...

    Digital Operational Resilience Act (DORA) and How RiskRecon Can Help

    Recap: What is DORA? In September 2020, the European Commission published a