|
By Leah Sadoian
Vendor risk assessments are critical for any organization that relies on third-party vendors. Third-party risk can negatively affect an organization’s security, compliance, and performance, resulting in devasting security breaches or disruptions in its supply chain that halt business operations. Organizations use vendor risk assessments to evaluate and manage third-party vendor risks associated with outsourcing business operations or procuring goods from external suppliers.
|
By Kyle Chin
The EU Cyber Solidarity Act is a new initiative that follows the European Union's latest efforts to build stronger cyber defenses against evolving cybersecurity threats. This legislation introduces a new strategy for enhanced cooperation between EU member states and focuses on how EU nations can better prepare and respond to cyber incidents.
|
By Nicholas Sollitto
Montana Governor Greg Gianforte signed Senate Bill 384, the Montana Consumer Data Privacy Act (MTCDPA), on May 19, 2023. The consumer privacy law will become effective on October 1, 2024, and requires covered entities that process personal data to comply with several transparency and disclosure obligations. The MTCDPA follows the structure and scope of other US state data privacy laws, including the California Consumer Privacy Act, Tennessee Information Protection Act, and Colorado Privacy Act.
|
By Nicholas Sollitto
Tennessee Governor Bill Lee passed the Tennessee Information Protection Act (TIPA) on May 11, 2023. TIPA becomes effective on July 1, 2025, and groups Tennessee with California, Colorado, Virginia, and other states that have published their own data privacy law while waiting for a comprehensive federal law from the U.S. Government.
|
By UpGuard Team
Security questionnaires represent the cornerstone of most third-party risk management (TPRM) programs. They allow organizations to responsibly appraise a vendor's security posture before they move forward with onboarding and grant the vendor access to internal systems and data. Nevertheless, most security teams feel burdened by time-consuming and lengthy security questionnaires, especially when faced with additional resource and staffing limitations.
|
By Edward Kost
A Vendor Risk Assessment (also referred to as a third-party risk assessment) is a critical component of a Vendor Risk Management program. As such, the overall impact of your VRM efforts hangs on the efficiency of your vendor risk assessment workflow. This post outlines a framework for implementing a streamlined vendor risk assessment process to prevent potential data breach-causing third-party security risks from falling through the cracks.
|
By Edward Kost
As digital transformation continues to multiply pathways to personal data, complete GDPR compliance is getting harder to attain. Whether you’re a data protection officer or a cybersecurity professional helping your organization remain compliant, this blog suggests advanced GDPR compliance strategies you may not have yet considered - beyond that delightful cookie consent notice we all love.
|
By Edward Kost
A Vendor Risk Management framework is the skeleton of your VRM program. Without it, your Vendor Risk Management program will collapse under a heavy burden of inefficient processes. This post outlines the anatomy of an effective VRM framework to help you seamlessly manage security risks in your third-party network.
|
By Kyle Chin
Telehealth or telemedicine is one of the most common ways of providing healthcare services in the EU, with nearly 77% of countries adopting some type of telehealth service. Countries like Norway, Sweden, Denmark, and Italy are considered some of the world’s leaders in providing telehealth services. Following the COVID-19 pandemic, telehealth became widely adopted across Europe, with many countries participating in cross-border collaboration.
|
By Leah Sadoian
Organizations commonly rely on third parties such as vendors, suppliers, and other business partners to handle critical operations. While third-party relationships can provide many benefits, they also introduce a range of risks that can threaten data security, compliance, and business continuity. Therefore, it's crucial to recognize and manage these risks with a robust Third-Party Risk Management policy.
|
By UpGuard
Join UpGuard's Chief Product Officer, Dan Bradbury, as he shines a spotlight on all of the groundbreaking product releases from the last quarter and the exciting releases coming soon.
|
By UpGuard
Join Jess Hooper, our Senior Product Manager, as she outlines how UpGuard is launching a suite of new features that together represent the next step in the evolution of trust management.
|
By UpGuard
Join Aaron Spiteri, Our Director of Third-Party Risk Management Services, as he outlines how UpGuard is reimagining our vendor risk assessment service from the ground up.
|
By UpGuard
Learn from Neil Cameron of Peoplecare, Shahn Harris of Air New Zealand, and Andrew Bullen of St John Ambulance Group as they share how they’ve scaled their TPRM program.
|
By UpGuard
Join our CISO, Phil Ross, and Head of Talent Acquisition, Ian Chaplin, as they discuss the evolution of the cybersecurity professional and share actionable insights on how to hire the right talent today.
|
By UpGuard
Join UpGuard's Chief Product Officer, Dan Bradbury, as he shines a spotlight on all of the groundbreaking product releases from the last quarter and the exciting releases coming soon.
|
By UpGuard
Join Greg Pollock, our VP of BreachSight, as he talks about the most prolific ransomware group, Lockbit, and how to keep yourself secure from ransomware attacks.
|
By UpGuard
Join Lisa Baldacchino, Senior Product Manager, as she shows how UpGuard can be leveraged for the long-term tracking and management of your third-party risks.
|
By UpGuard
Join Kurt Brown, our VP of Product, as he delves into UpGuard's strategic approach to integrations.
|
By UpGuard
You understand the risks that third party vendors pose to your business, and you're ready to do something about it. What are the capabilities you need to understand your cyber risk, manage your vendors, and avoid data breaches?
|
By UpGuard
Perhaps your organization is looking to make a transition from traditional IT operations and development practices to DevOps, or you're looking to realign your career path with DevOps to position yourself more favorably to future opportunities. Whatever your motivations are, this eBook will provide you with foundation knowledge for boosting your career with DevOps.
|
By UpGuard
The fact that one has to "make a case" for Microsoft in the DevOps sphere puts them at a disadvantage, especially competing against major open source options with large community bases and proven performance. But, moving forward, one can expect the gap between Microsoft and other tools to close further, as they continue pressing their business in this direction.
|
By UpGuard
Cybersecurity is officially dead. Worldwide spending on security-related hardware, software and services rose to $73.7 billion in 2016 from $68.2 billion a year earlier, according to researcher IDC. This number is expected to approach $90 billion in 2018.
|
By UpGuard
ServiceNow® customers optimizing their IT service delivery and management processes require deeper context and detail level behind IT asset changes--information the leading help desk automation and incident reporting platform does not provide. In this report you'll learn how UpGuard fills this visibility and awareness gap, keeping ServiceNow® in line with the true state of your environment.
|
By UpGuard
DevOps and ITIL should be compared with an eye towards the problem you're trying to solve, with a focus on the tangible benefits you and your team would see from using each.
|
By UpGuard
Selecting a security provider is no easy feat-it includes months of designing a company's security strategy, evaluating different solutions, budgeting accordingly, and assuring stakeholders the investment will pay off by keeping their business safe.
|
By UpGuard
With the enterprise so dependent on technology and digitized assets, how can it prevent data-related disasters from sinking the business? The answer is by taking a new approach to managing cyber risk as a function of business risk at large. McKinsey calls this "Digital Resilience", but it can simply be thought of as conducting business safely in today's connected environments.
|
By UpGuard
Software engineering is changing and DevOps is at the heart of it. An organization's ability to be responsive to the business requires better collaboration, communication, and integration across IT.
|
By UpGuard
There is no doubt that the DevOps movement has gone mainstream. When even IBM and HP are dedicating sites to it there is no longer any question. If we were to place it on the Gartner Hype Cycle even the most devoted proponents would have to admit that it's rapidly approaching the "Peak of Inflated Expectations".
- April 2024 (22)
- March 2024 (24)
- February 2024 (11)
- January 2024 (23)
- December 2023 (22)
- November 2023 (13)
- October 2023 (25)
- September 2023 (28)
- August 2023 (39)
- July 2023 (24)
- June 2023 (19)
- May 2023 (17)
- April 2023 (18)
- March 2023 (15)
- February 2023 (15)
- January 2023 (9)
- December 2022 (7)
- November 2022 (23)
- October 2022 (13)
- September 2022 (28)
- August 2022 (32)
- July 2022 (6)
- June 2022 (21)
- May 2022 (20)
- April 2022 (16)
- March 2022 (15)
- February 2022 (8)
- January 2022 (12)
- December 2021 (16)
- November 2021 (11)
- October 2021 (9)
- September 2021 (12)
- August 2021 (13)
- July 2021 (6)
- June 2021 (4)
- May 2021 (14)
- April 2021 (7)
- March 2021 (11)
- February 2021 (10)
- January 2021 (4)
- December 2020 (15)
- November 2020 (7)
- October 2020 (17)
- August 2020 (9)
- July 2020 (2)
- June 2020 (8)
- May 2020 (12)
- April 2020 (17)
- March 2020 (19)
- February 2020 (15)
- January 2020 (15)
- December 2019 (10)
- November 2019 (13)
- October 2019 (14)
- September 2019 (10)
- August 2019 (10)
- July 2019 (2)
- June 2019 (1)
- May 2019 (2)
- March 2019 (1)
- November 2018 (4)
- October 2018 (1)
- September 2018 (12)
- August 2018 (2)
- July 2018 (3)
- June 2018 (2)
- May 2018 (5)
- April 2018 (6)
- March 2018 (1)
- February 2018 (1)
- January 2018 (1)
- December 2017 (1)
- November 2017 (1)
A better, smarter way to protect your data and prevent breaches. Our products help security, risk and vendor management teams take control of cyber risk and move faster with confidence.
UpGuard gathers complete information across every digital surface, stores it in a single, searchable repository, and provides continuous validation and insightful visualizations so companies can make informed decisions.
UpGuard then aggregates this information into an industry standard cyber risk score called CSTAR. The CSTAR score is a single, easy-to-understand value representing an organization's aptitude in monitoring compliance, tracking unwanted change, and detecting vulnerabilities in their infrastructure.
Businesses depend on trust, but breaches and outages erode that trust. UpGuard is the world’s first cyber resilience platform, designed to proactively assess and manage the business risks posed by technology.