Vendor Risk Management Insights

    iconemail-box

    Subscribe to our blog

    Security never sleeps. Get the most up-to-date information by subscribing to the RiskRecon blog.

    Third-Party Risk 101

    What does it mean to be a third party? A third party is an outside group that becomes involved in a situation between two groups. Businesses use third-party vendors for several reasons. ...
    Third Party Risk Management

    Third Party Risk Management

    A third party entity is any business or organization that collaborates with your business or company. This third party usually provides a service or product directly to your company or indirectly ...
    NIST-Standards-250

    Identifying the Most Common Security Issues Causing Noncompliance

    Recently, RiskRecon and the Cyentia Institute launched a research report called,
    CIty-Hall-Blog-3-250

    Are US Cities Meeting Third-Party Risk Challenges?

    It is virtually impossible to operate a business, organization, or local government these days without reliance on third parties or third-party tools. While many relationships with third-party ...
    accepting-risk250

    Are CISO’s or Boards paying attention to third-party risk now?

    Recently, RiskRecon, a Mastercard Company, founder Kelly White, sat down with Sam Olyaei, Director at Gartner Research, and Errol Weiss, Chief Security Officer at Health-ISAC, to discuss their ...
    Healthcare-Supply-Chain-Blog-250

    Risk Surface of the Healthcare Supply Chain

    While the types of organizations covered in a previous post officially fall under the Healthcare ...

    When TLS Problems Signal Broader Security Hygiene Flaws

    As organizations examine their vendor relationships with an eye toward cyber risk, there's rarely a single factor that would tell a decision-maker that any given third-party is too risky to do ...
    Observing Malicious Activity

    RiskRecon Observed Malicious Activity During the COVID-19 Pandemic

    By: Jonathan Ehret, Vice President of Strategy & Risk, RiskRecon The onset of the COVID-19 pandemic has brought many changes to our world. ...
    ISO 20071

    Third-Party Risk Management and ISO 20071

    In mid-2019, a medical testing company was informed by one of its vendors that the vendor had experienced a significant data breach. This data breach involved ...

    How to Start Thinking About Nth Party Risk - Part 2

    If you're starting to explore the issue of Nth-party risk, our first piece of advice is to have some serious talks with your insurers and your lawyers. Frank discussions with insurers over ...