RiskRecon Reports & White Papers


      Subscribe to our newsletter

      Security never sleeps. Get the most up-to-date information by subscribing to the RiskRecon newsletter.


      White Paper: Five Lessons Learned from 1000 Ransomware Attacks

      Much has been written about hardening enterprises against the threat of ransomware, but what about protecting supply chains? Ideally, every supplier has a robust security program, strong ...

      eBook: Get Ready to Take On Software Supply Chain Risk Management

      Do you have the visibility you need into your software supply chains? Ultimately, agencies will need to use a mix of tools and research to ensure they have a complete picture of the supply chains ...

      RiskRecon Rating Correlation to Ransomware Event Frequency

      To help understand the probability of an organization succumbing to a destructive ransomware attack, RiskRecon has studied the cybersecurity hygiene of companies at the time of the ...

      Report: The State of Noncompliance in Cyber Risk Management

      Whether they’re coming from the PCI Council, NIST, ISO, or CIS, the regulations and frameworks laid out by these compliance groups offer a reference point for organizations to chart their security ...

      Ponemon 2022 Study: Data Risk in the Third-Party Ecosystem

      Sponsored by RiskRecon, a Mastercard Company, and conducted by Ponemon Institute, this new report surveyed over 1,000 IT and IT security professionals familiar with their organizations’ approach ...

      Navigating the Internet Risk Surface Report 2022

      In this report, we look at what distinguishes the firms that measure and manage cyber risk well from those that struggle the most. Armed with this knowledge, Third-Party Risk Management (TPRM) ...

      Report: Modernization of Vendor Assessments

      Over the last five years, there has been an evolution in the development of cybersecurity and vendor assessment tools focused on keeping businesses secure, but also on streamlining and simplifying ...

      Checklist: Create a Business Case for Cybersecurity Risk Ratings

      According to Forrester Research, global security decision-makers that reported a cybersecurity breach within a 12-month span increased from 50% in 2019 to 63% in 2022. This ...
      RiskRecon report on the cybersecurity hygiene among US cities

      Report: The state of cybersecurity in U.S. cities

      It is widely recognized that cities and local government agencies within the United States have increasingly become targets of ransomware in recent years.

      Trends in TPRM: Q&A with Gartner and H-ISAC

      Recently, RiskRecon founder Kelly White sat down with Sam Olyaei, Director at Gartner Research, and Errol Weiss, Chief Security Officer at Health-ISAC, to discuss their client’s experiences ...