RiskRecon Reports & White Papers


    Subscribe to our newsletter

    Security never sleeps. Get the most up-to-date information by subscribing to the RiskRecon newsletter.


    Gartner®: 2023 Hype Cycle™ for Cyber Risk Management

    Regulatory changes, ransomware, cyber attacks, and data breaches have transformed cyber risk in organizations.

    New Report: Balancing Third-Party Risk

    From speculating that vendors have threatening security postures to guessing that vendors have water-tight security practices, organizations make assumptions about cybersecurity too often. ...

    eBook: Managing Ransomware Risk in the Supply Chain

    There is surprisingly little data on a large-scale study basis that correlates the risk outcomes organizations are achieving through maintaining good cybersecurity hygiene. Is it paying off, or is ...

    eBook: Get Ready to Take On Software Supply Chain Risk Management

    Do you have the visibility you need into your software supply chains? Ultimately, agencies will need to use a mix of tools and research to ensure they have a complete picture of the supply chains ...

    Paper: Risk Management Insights from 10 years of Breach Events

    In whatever way you digest the news, you will see many stories about breach events, so many in fact, that one might reasonably conclude that every organization is compromised regularly.

    White Paper: Five Lessons Learned from 1000 Ransomware Attacks

    Much has been written about hardening enterprises against the threat of ransomware, but what about protecting supply chains? Ideally, every supplier has a robust security program, strong ...

    RiskRecon Rating Correlation to Ransomware Event Frequency

    To help understand the probability of an organization succumbing to a destructive ransomware attack, RiskRecon has studied the cybersecurity hygiene of companies at the time of the ...

    Report: The State of Noncompliance in Cyber Risk Management

    Whether they’re coming from the PCI Council, NIST, ISO, or CIS, the regulations and frameworks laid out by these compliance groups offer a reference point for organizations to chart their security ...

    Ponemon 2022 Study: Data Risk in the Third-Party Ecosystem

    Sponsored by RiskRecon, a Mastercard Company, and conducted by Ponemon Institute, this new report surveyed over 1,000 IT and IT security professionals familiar with their organizations’ approach ...

    Navigating the Internet Risk Surface Report 2022

    In this report, we look at what distinguishes the firms that measure and manage cyber risk well from those that struggle the most. Armed with this knowledge, Third-Party Risk Management (TPRM) ...