Risk Management

Cybersecurity Risk Mitigation: Understanding the Limitations of Reducing a £2 Million Risk

May 3, 2023 By Razorthorn In Razorthorn

We discuss a scenario where a £2 million risk can potentially be mitigated to £100,000 through a £50,000 investment. However, it's crucial to comprehend the inherent limitations of risk reduction in the cybersecurity realm. As seasoned cybersecurity professionals, we acknowledge that no company, solution, or defense mechanism can guarantee 100% protection against emerging threats. Stay updated and empowered with the latest insights to safeguard your digital assets effectively.

View Video

Razorthorn

Read more about Cybersecurity Risk Mitigation: Understanding the Limitations of Reducing a £2 Million Risk

Zero day remediation tips: Preparing for the next vulnerability

May 3, 2023 By Sabrina Pagnotta In BitSight

Businesses increasingly run on software, which, unbeknownst to its developers, can contain vulnerabilities that attackers often discover and exploit before a patch is available. This makes zero day attacks inevitable, but you can reduce their impact in your network and across your supply chain if you’re prepared to act fast.

Read Post

BitSight

Read more about Zero day remediation tips: Preparing for the next vulnerability

A Mere Five Percent of Vulnerable Enterprises Fix Their Issues Every Month: How to Help Them Do Better?

May 3, 2023 By Abdullah Al Rashid In BitSight

Software vulnerabilities are one of the leading threats to an organization's cybersecurity posture, yet recent research from Bitsight reveals that enterprises affected by software vulnerabilities resolve them at a typical compound rate1 of only about 5% per month compounded continuously. However, there is evidence of much faster remediation for certain classes of vulnerabilities.

Read Post

BitSight

Read more about A Mere Five Percent of Vulnerable Enterprises Fix Their Issues Every Month: How to Help Them Do Better?

A new way to proactively manage third-party risk: Vendor Risk Management

May 3, 2023 By Vanta In Vanta

Businesses are using more SaaS applications than ever, with an average of 110 apps per organization. This proliferation of third-party applications means increasingly more customer and employee data is handled by external vendors. ‍ Ensuring your third-party vendors are secure by tracking risk, conducting reviews, and responding to issues is a security best practice and compliance requirement. Unfortunately, this process is often a manual — and expensive — one.

Read Post

Vanta

Read more about A new way to proactively manage third-party risk: Vendor Risk Management

AI, Cybersecurity, and Emerging Regulations

May 3, 2023 By SecurityScorecard In SecurityScorecard

The SecurityScorecard team has just returned from an exciting week in San Francisco at RSA Conference 2023. This year’s theme, “Stronger Together,” was meant to encourage collaboration and remind attendees that when it comes to cybersecurity, no one goes it alone. Building on each other’s diverse knowledge and skills is what creates breakthroughs.

Read Post

SecurityScorecard

Read more about AI, Cybersecurity, and Emerging Regulations

5 Reasons to Implement Third-Party Risk Management Software

May 3, 2023 By RiskOptics In RiskOptics

According to a 2022 Gartner survey, 84 percent of executive risk committee members say that “misses” in third-party risk resulted in disruption to their business operations. That statistic is alarming, considering that most enterprise organizations have extensive third-party relationships with vendors, suppliers, and partners for business innovation or operational efficiency.

Read Post

RiskOptics

Read more about 5 Reasons to Implement Third-Party Risk Management Software

How to Mitigate Supply Chain Attacks

May 2, 2023 By Sabrina Pagnotta In BitSight

Cybercriminals are sneaky. They know that the weakest link in an organization’s cyber defenses is its supply chain. In fact, supply chain attacks are now the avenue of choice for hackers. Consider the facts.

Read Post

BitSight

Read more about How to Mitigate Supply Chain Attacks

How Do You Perform a Supplier Risk Assessment?

May 2, 2023 By Kyle Chin In UpGuard

When choosing a supplier to partner with, organizations need to perform their due diligence and assess the cyber risks associated with each particular supplier using risk assessment evaluations. Part of the supplier lifecycle management process includes ensuring that these third parties are meeting minimum security requirements, maintaining strong cybersecurity programs, and adhering to all relevant compliance regulations.

Read Post

UpGuard

Read more about How Do You Perform a Supplier Risk Assessment?

A Closer Look at SecurityScorecard Marketplace

May 2, 2023 By SecurityScorecard In SecurityScorecard

On average, organizations deploy 47 different cybersecurity solutions and technologies. This puts security, IT, and VRM teams in a difficult position, working with various tools that don’t integrate. One-third of organizations identify “non-integration of security tools” as a major roadblock to getting the total value of their investments.

Read Post

SecurityScorecard

Read more about A Closer Look at SecurityScorecard Marketplace

New Study Reveals Shocking Truth About Data Breach Cover-Ups

May 2, 2023 By RiskOptics In RiskOptics

Being a cybersecurity professional is a heavy responsibility and requires an exceptional amount of ethics and integrity. So, when cybersecurity software company Bitdefender released the results of their 2023 Cybersecurity Assessment, the results shocked me (more than they probably should have). The statistics on data breach cover-ups were alarming. 1.

Read Post