Vendor Risk Management Insights

      iconemail-box

      Subscribe to our blog

      Security never sleeps. Get the most up-to-date information by subscribing to the RiskRecon blog.

      When TLS Problems Signal Broader Security Hygiene Flaws

      As organizations examine their vendor relationships with an eye toward cyber risk, there's rarely a single factor that would tell a decision-maker that any given third-party is too risky to do ...

      The TLS 1.2 Deadline is Looming, Do You Have Your Act Together?

      In the pantheon of security configuration duties for organizations running internet assets, maintaining the latest TLS encryption protocols to keep the cryptographic apparatus at full ...

      Supporting Women in Cybersecurity: Tomorrow’s InfoSec Leaders

      A common topic across the cybersecurity industry, even during the pandemic that’s impacting every corner of the economy, is that there is STILL a substantial ...

      Understanding AWS Core Security Essentials

      Amazon Web Services provides a mind-boggling expanse of systems, services, and applications. An all-encompassing AWS security assessment guide would fill ...

      In Cybersecurity it’s Not Good Enough to Simply Trust

      Unfortunately, too many enterprises today are completely blindsided by down-stream impact from

      New Toolkit for Assessing AWS Deployments and Operations

      By: Kelly White, Founder and CEO, RiskRecon Achieving good third-party risk outcomes requires that your vendors operate secure cloud environments. Amazon Web ...

      You Can't Abstract Away Risk

      The fundamental truth about third-party risk is that an organization can abstract away IT complexity and outsource IT work, but it can never outsource the cyber ...

      Third-Party Technical Relationships: More Present Than You Think

      Many organizations realize that they need to do a better job at managing third-party risk, but they don’t prioritize the problem because they don’t realize the true scope of the ...
      Observing Malicious Activity

      RiskRecon Observed Malicious Activity During the COVID-19 Pandemic

      By: Jonathan Ehret, Vice President of Strategy & Risk, RiskRecon The onset of the COVID-19 pandemic has brought many changes to our world. ...

      Third-Party Risk Management and ISO 20071

      In mid-2019, a medical testing company was informed by one of its vendors that the vendor had experienced a significant data breach. This data breach involved ...