%term

How to Resolve SSL Configuration Risks

Oct 30, 2023 By Caitlin Postal In UpGuard

Transport Layer Security (TLS) provides security for internet communications. TLS is the successor to the now-deprecated Secure Sockets Layer (SSL), but it is common for TLS and SSL to be used as synonyms for the current cryptographic protocols that encrypt digital communications through public key infrastructure (PKI).

Read Post

UpGuard

Read more about How to Resolve SSL Configuration Risks

Top 3 Vendor Cybersecurity IT Risk Assessment Templates

Oct 30, 2023 By Brian Thomas In BitSight

If you’re developing a vendor risk management (VRM) plan from scratch or looking to scale your existing program, a cybersecurity IT risk assessment template can help you get started. Fortunately, you have options. In this blog, we’ve listed several templates, frameworks, and checklists that can help you create a personalized vendor cybersecurity IT risk assessment questionnaire.

Read Post

BitSight

Read more about Top 3 Vendor Cybersecurity IT Risk Assessment Templates

SEC's Cybersecurity Regulations, Part III: The Relationship Between the CISO & The Board

Oct 30, 2023 By Jake Olcott & Nicole Matusek In BitSight

Cybersecurity is a top risk for corporate directors to understand and navigate. The implications of cyber events for a company are many and growing: instantly damaged reputations that erode years of credibility and trust with customers and investors, impaired profitability from customer attrition and increased operating costs, lost intellectual property, fines and litigation, and harm to a company’s people and culture.

Read Post

BitSight

Read more about SEC's Cybersecurity Regulations, Part III: The Relationship Between the CISO & The Board

The Evolution of the CISO

Oct 30, 2023 By SecurityScorecard In SecurityScorecard

CISOs and security leaders are constantly being reminded that cyber risk is now a business risk. And at the same time, organizations are realizing the financial implications of not having cyber expertise on their boards.

Read Post

SecurityScorecard

Read more about The Evolution of the CISO

Cyberint Named as Frost & Sullivan's 'Company of the Year' in the Global External Risk Mitigation and Management Industry

Oct 29, 2023 By Naftali In Cyberint

Cyberint’s holistic approach offers unmatched visibility, in-depth threat insights, and continuous risk monitoring with an unparalleled market understanding, according to Frost & Sullivan. Tel Aviv, Israel – November 1st, 2023 – Cyberint, the leader in impactful intelligence, is proud to announce that it has been recognized as the “Company of the Year” in the Global External Risk Mitigation & Management (ERMM) industry by Frost and Sullivan.

Read Post

Cyberint

Read more about Cyberint Named as Frost & Sullivan's 'Company of the Year' in the Global External Risk Mitigation and Management Industry

A Deep Dive Into Cloud Security Assessments

Oct 26, 2023 By SecurityScorecard In SecurityScorecard

Cloud platforms offer unparalleled scalability, flexibility, and cost-efficiency. However, the convenience and advantages of the cloud are accompanied by significant security challenges. Hackers are constantly trying to exploit weak cloud configuration settings, which is why it’s important to have visibility into the security of your organization’s cloud infrastructure.

Read Post

SecurityScorecard

Read more about A Deep Dive Into Cloud Security Assessments

Free Template: Vendor Post-Data Breach Questionnaire (2023)

Oct 26, 2023 By Edward Kost In UpGuard

A post-data breach questionnaire is essential for evaluating the impact of a third-party breach on your organization. This due diligence also ensures complaints with expanding data breach protection standards sweeping across government regulations. This post outlines a template to inspire the design of your security questionnaire for vendors that have suffered a data breach or similar security incident. Learn how UpGuard streamlines Vendor Risk Management >

Read Post

UpGuard

Read more about Free Template: Vendor Post-Data Breach Questionnaire (2023)

Industrial Control Systems are Exposed: Breaking Down the Risks

Oct 26, 2023 By Noah Stone In BitSight

The world had a security wake-up call recently. Organizations were alerted to nearly 100,000 exposed industrial control systems (ICS), potentially allowing an attacker to access and control physical infrastructure such as power grids, traffic light systems, security and water systems, and more. That’s not only a stark statistic but a critical call-to-action for organizations around the world.

Read Post

BitSight

Read more about Industrial Control Systems are Exposed: Breaking Down the Risks

SIG Lite Questionnaire

Oct 26, 2023 By UpGuard In UpGuard

The SIG Lite Questionnaire is now available as a part of UpGuard’s questionnaire library! We’ve partnered with Shared Assessments to offer this leading security framework to help businesses identify, assess, and mitigate cyber risk in their third-party vendors. SIG Lite is one of the most popular questionnaires for assessing vendors and covers a wide range of IT security and risk management topics, including data privacy, network security, and vulnerability management!

View Video

UpGuard

Read more about SIG Lite Questionnaire

Third-Party Security Risks: How to Mitigate Potential Cybersecurity Threats

Oct 25, 2023 By Syteca In Syteca

Cooperation is the key to success, so working with third parties helps your organization increase efficiency, offer better products and services, employ highly qualified experts, and cut costs. But all these benefits come at the price of additional cybersecurity risks. Minor flaws in your third-party vendor’s security and privacy routines may lead to a breach in your organization’s cybersecurity.

Read Post