Risk Management

Identifying Assets for IT Risk Analysis

Oct 31, 2023 By RiskOptics In RiskOptics

Any organization that uses information technology should conduct cybersecurity risk assessments from time to time. Each organization, however, faces its own unique set of security risks and needs to tailor its approach to addressing those specific risks within its risk management processes. To get started, you first need to identify all your organization’s IT assets, which might be subject to those risks.

Read Post

RiskOptics

Read more about Identifying Assets for IT Risk Analysis

How to Resolve SSL Configuration Risks

Oct 30, 2023 By Caitlin Postal In UpGuard

Transport Layer Security (TLS) provides security for internet communications. TLS is the successor to the now-deprecated Secure Sockets Layer (SSL), but it is common for TLS and SSL to be used as synonyms for the current cryptographic protocols that encrypt digital communications through public key infrastructure (PKI).

Read Post

UpGuard

Read more about How to Resolve SSL Configuration Risks

Top 3 Vendor Cybersecurity IT Risk Assessment Templates

Oct 30, 2023 By Brian Thomas In BitSight

If you’re developing a vendor risk management (VRM) plan from scratch or looking to scale your existing program, a cybersecurity IT risk assessment template can help you get started. Fortunately, you have options. In this blog, we’ve listed several templates, frameworks, and checklists that can help you create a personalized vendor cybersecurity IT risk assessment questionnaire.

Read Post

BitSight

Read more about Top 3 Vendor Cybersecurity IT Risk Assessment Templates

SEC's Cybersecurity Regulations, Part III: The Relationship Between the CISO & The Board

Oct 30, 2023 By Jake Olcott & Nicole Matusek In BitSight

Cybersecurity is a top risk for corporate directors to understand and navigate. The implications of cyber events for a company are many and growing: instantly damaged reputations that erode years of credibility and trust with customers and investors, impaired profitability from customer attrition and increased operating costs, lost intellectual property, fines and litigation, and harm to a company’s people and culture.

Read Post

BitSight

Read more about SEC's Cybersecurity Regulations, Part III: The Relationship Between the CISO & The Board

Key Steps to Improving Strategic Vendor Management

Oct 30, 2023 By RiskOptics In RiskOptics

Efficient procurement is crucial to the success of any corporate organization. Hence, companies should consider strategies for effective vendor risk management. Strategic Vendor Management (SVM) continuously monitors and improves vendor relationships and exchanges. If a vendor performs only one task, SVM asks you to have that vendor perform multiple tasks instead, allowing for cost savings and mitigating cybersecurity risks.

Read Post

RiskOptics

Read more about Key Steps to Improving Strategic Vendor Management

The Benefits of Using a Compliance-Oriented Data Management Platform

Oct 30, 2023 By RiskOptics In RiskOptics

Data drives the modern economy. The right type, amount, and quality of data lets organizations better understand their customers. This understanding enables companies to build more accurate customer profiles, design personalized marketing programs, refine retention strategies, and nurture meaningful long-term customer relationships. Simply collecting this data, however, is not enough. Data only becomes valuable when it is transformed into insightful information.

Read Post

RiskOptics

Read more about The Benefits of Using a Compliance-Oriented Data Management Platform

The Evolution of the CISO

Oct 30, 2023 By SecurityScorecard In SecurityScorecard

CISOs and security leaders are constantly being reminded that cyber risk is now a business risk. And at the same time, organizations are realizing the financial implications of not having cyber expertise on their boards.

Read Post

SecurityScorecard

Read more about The Evolution of the CISO

Cyberint Named as Frost & Sullivan's 'Company of the Year' in the Global External Risk Mitigation and Management Industry

Oct 29, 2023 By Naftali In Cyberint

Cyberint’s holistic approach offers unmatched visibility, in-depth threat insights, and continuous risk monitoring with an unparalleled market understanding, according to Frost & Sullivan. Tel Aviv, Israel – November 1st, 2023 – Cyberint, the leader in impactful intelligence, is proud to announce that it has been recognized as the “Company of the Year” in the Global External Risk Mitigation & Management (ERMM) industry by Frost and Sullivan.

Read Post

Cyberint

Read more about Cyberint Named as Frost & Sullivan's 'Company of the Year' in the Global External Risk Mitigation and Management Industry

Industrial Control Systems are Exposed: Breaking Down the Risks

Oct 26, 2023 By Noah Stone In BitSight

The world had a security wake-up call recently. Organizations were alerted to nearly 100,000 exposed industrial control systems (ICS), potentially allowing an attacker to access and control physical infrastructure such as power grids, traffic light systems, security and water systems, and more. That’s not only a stark statistic but a critical call-to-action for organizations around the world.

Read Post

BitSight

Read more about Industrial Control Systems are Exposed: Breaking Down the Risks

SIG Lite Questionnaire

Oct 26, 2023 By UpGuard In UpGuard

The SIG Lite Questionnaire is now available as a part of UpGuard’s questionnaire library! We’ve partnered with Shared Assessments to offer this leading security framework to help businesses identify, assess, and mitigate cyber risk in their third-party vendors. SIG Lite is one of the most popular questionnaires for assessing vendors and covers a wide range of IT security and risk management topics, including data privacy, network security, and vulnerability management!

View Video