How to protect yourself through the hazards of the M&A process

Posted by RiskRecon on Feb 18, 2019 7:08:59 PM

The mergers and acquisitions process is scary enough, but absorbing another company’s digital assets without full visibility into their entire digital infrastructure is downright harrowing. This is perhaps best evidenced by Marriott’s experience during their Starwood acquisition: after the acquisition had been finalized, Marriott discovered a major data breach. Marriott’s direct losses due to the breach range between $200 million and $600 million. On the high end, that is nearly 5% of the total Starwood acquisition price—a high price to pay for negligence.

Thankfully, there’s a process for mitigating your cyber risk during the M&A process so you can avoid a mistake like Marriott’s. In a recent article published in SC Magazine, the process is outlined in five important steps:

Read More

Topics: Vendor Security, Vendor Risk Management, 3rd party risk management, Third Party Risk, Merger & Acquisition cyber risk

2019 Cybersecurity Predictions

Posted by RiskRecon on Feb 7, 2019 6:06:07 PM

VMblog.com, Virtualization Technology News and Information, recently posted some thought-provoking 2019 cybersecurity predictions from industry veteran Kelly White, CEO and Co-Founder of RiskRecon. In this article, Kelly touches on the growing importance of third-party cyber risk management, how hackers are focusing on third-party vulnerabilities, and provides four well-founded security predictions to help guide your security best practices for 2019 and years to come.

Kelly's full article and predictions can be found in the 11th annual VMblog.com series exclusive, along with other contributions from industry executives and experts. Click here to read more.

Read More

Topics: Vendor Security, Vendor Risk Management, 3rd party risk management, Third Party Risk

Product Enhancement:  Issue Risk Matrix for your Entire Vendor Portfolio

Posted by RiskRecon on Dec 17, 2018 4:18:51 PM

RiskRecon is pleased to announce the release of the Portfolio Issue Priority Matrix. The Portfolio Issue Risk Matrix provides you instant visibility into the risk distribution of security issues across your entire vendor portfolio. The interactive matrix enables you to identify the vendors that have issues within each risk priority. This is yet another way that RiskRecon makes it easy for you to understand and act on your third-party risk.

Read More

Topics: Vendor Security, Vendor Risk Management, 3rd party risk management, Issue Severity, Asset Value, Issue Risk Matrix

Seventh Deadly Sin: Limiting vendor risk management to periodic assessments

Posted by RiskRecon on Nov 1, 2018 2:09:52 PM

 

We’re running a blog post series on the “Seven Deadly Sins of Third-Party Cyber Risk Management;” here’s the last deadly sin, which is limiting vendor risk management to periodic assessments.

Read More

Topics: Vendor Security, 3PRM, Vendor Risk Management

Sixth Deadly Sin: Trusting, but not verifying

Posted by RiskRecon on Oct 30, 2018 3:43:03 PM

 

We’re running a blog post series on the “Seven Deadly Sins of Third-Party Cyber Risk Management,” here’s the sixth deadly sin, which is trusting but not verifying.

Read More

Topics: Vendor Security, Security Ratings, Vendor Risk Management

Fifth Deadly Sin: Not knowing your vendors

Posted by RiskRecon on Oct 24, 2018 4:13:07 PM

 

We’re running a blog post series on the “Seven Deadly Sins of Third-Party Cyber Risk Management;” here’s the fifth deadly sin, which is not knowing your vendors.

Read More

Topics: Vendor Security, Security Ratings, Vendor Risk Management

Fourth Deadly Sin: Failure to address information security in third-party contracts

Posted by RiskRecon on Oct 22, 2018 7:00:00 AM

 

We’re running a blog post series on the “Seven Deadly Sins of Third-Party Cyber Risk Management;” here’s the fourth deadly sin, which is the failure to address information security in third-party contracts.

Read More

Topics: Security Ratings, Vendor Security, Vendor Risk Management

Third Deadly Sin: Not measuring and reporting risk and risk outcomes

Posted by RiskRecon on Oct 18, 2018 8:00:00 AM

 

We’re running a blog post series on the “Seven Deadly Sins of Third-Party Cyber Risk Management;” here’s the third deadly sin, which is not measuring and reporting risk and risk outcomes.

Read More

Topics: Third Party Risk, Vendor Security, Vendor Risk Management

Lockpath and RiskRecon Further Partnership to Increase Third-Party Risk Visibility

Posted by RiskRecon on Sep 18, 2018 11:31:11 AM

 

Lockpath, a leading provider of integrated risk management solutions, today announced the availability of the integration between its award-winning Keylight Platform and RiskRecon, a SaaS-based third-party cyber risk monitoring solution that delivers objective insights into third-party security performance and IT landscape. This product integration aims to enable precise, efficient reduction and elimination of organizations’ most critical third party security gaps.

Read More

Topics: Third Party Risk, Vendor Security, Vendor Risk Management

RiskRecon Advisor Yong-Gon Chon Shares Cybersecurity Tips

Posted by RiskRecon on Aug 30, 2018 2:56:12 PM

 

In a recent article in the ABA Journal, noted cybersecurity expert and RiskRecon Advisor, Yong-Gon Chon, shared his thoughts on what law firms can do to bolster their cybersecurity. In particular, Chon suggests learning from other industries. For example, law firms can look to financial institutions, which have long struggled with protecting data as required under the Gramm-Leach-Bliley Act, he said. Data protection is key.

Read More

Topics: Third Party Risk, Vendor Security, Vendor Risk Management, risk measurements, 3rd party risk management