Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

December 2024

What you need to know about CMMC-from our Director of Government Strategy & Affairs Morgan Kaplan

The Cybersecurity Maturity Model Certification (CMMC) program was developed by the Department of Defense (DoD) to ensure that defense contractors and subcontractors meet the cybersecurity requirements needed to safely and responsibly handle government data. Of primary concern is how commercial vendors safeguard Federal Contract Information (FCI) and Controlled Unclassified Information (CUI).

Vanta deepens HITRUST partnership with MyCSF integration

As the security expectations of customers grow and the regulatory landscape gets more complex, businesses are recognizing the value of investing in and demonstrating security. As the demand for proving compliance grows, so does the demand for HITRUST, given its reputable assessment process. ‍ Achieving HITRUST certification involves demonstrating compliance with a detailed set of controls designed to manage and mitigate information security risks.

Why security questionnaires are a familiar-but ineffective-norm for assessing risk

‍Security questionnaires are a standard part of almost every due diligence process before companies sign on to work with a new third party. ‍ By asking detailed questions via questionnaires, organizations learn about a seller’s security controls and compliance with relevant standards. With that information, they determine how and if a partnership with that third party will expand their attack surface and increase risk—and ultimately decide if the increased risk is acceptable.

5 steps of the security questionnaire process to automate today

As organizations sell to more discerning buyers, scrutiny on security and compliance practices grows. It’s certainly warranted—the frequency of third-party breaches is on the rise. In our State of Trust Report, almost half of all organizations surveyed say that a vendor of theirs experienced a data breach since they started working together. ‍