Vendor Management - Security Intelligence

Team of professionals discussing third-party risk management in the enterprise

article

The Cybersecurity Industry’s Third-Party Risk Management Problem Is Rooted in Visibility

Only one-third of organizations feel their processes for third-party risk management are effective. The root of the issue lies in visibility and ineffective process.

May 22, 2019 | By Jasmine Henry

article

Security team engaging in third-party risk management activities.

article

How to Make Third-Party Risk Management Second Nature

Organizations that sleep on third-party risk management could unknowingly expose their systems to remote attacks, access risks and more.

May 7, 2019 | By Kevin Beaver

article

A person inserting a USB device into a laptop: supply chain security

news

Tick Group Malware Campaign Highlights Need for Stronger Supply Chain Security

Researchers speculated that poor supply chain security could be to blame for a new malware campaign that targets insecure USB drives to infect Windows machines.

July 23, 2018 | By David Bisson

news

A businesswoman writing in a notebook while using a laptop: vendor security

article

Why It’s Time to Cross Out the Checklist Approach to Vendor Security

When it comes to vendor security, all the handshakes and paperwork that go into a business deal tend to get in the way of proper audits and thorough vulnerability assessments.

July 12, 2018 | By Kevin Beaver

article

A packet of paper on a clipboard labeled "General Data Protection Regulation."

article

Playing It Smart for Data Controllers and Processors

Organizations preparing for GDPR should reach out to their third-party vendors to clearly define the roles, expectations and responsibilities of data controllers and processors.

May 14, 2018 | By Cindy Compert

article

People in business attire competing in a game of tug of war.

article

The Competing Claims of Security Vendors Sow Customer Distrust

There is no such thing as a magic bullet for security. When security vendors push their products too hard, customers grow skeptical of the entire industry.

May 5, 2017 | By Jack Danahy

article

news

Oh, Negative! Red Cross Donor Breach Nabs 550,000 Records

When donors finish giving blood, they’re often handed some sweet treats, like cookies or juice, to help get them back to full strength. But for the Australian Red Cross, the end of October 2016 comes with not-so-funny tricks along with those...

October 31, 2016 | By Douglas Bonderud

news

The best defense against attacks caused by third-party vendor connections is a solid understanding of your IT environment and the risks it faces. It is important to look at the big picture, rather than simply putting out fires day by day.

article

Dealing With Third-Party Vendor Connections in Your Network

While most third-party vendor connections are harmless and well-intentioned, they can act as footholds for attackers to gain access to your network.

August 30, 2016 | By Kevin Beaver

article

Third-party partners, service providers and vendors must be held accountable for the role they play in ensuring security compliance. Though it can be hard for companies to properly manage third parties, there are some best practices to adhere to.

article

Accountability Key to Third-Party Security Management

Organizations must hold third-party vendors, partners and service providers accountable for the role they play in ensuring the enterprise's security.

December 5, 2014 | By Lynn Price

article

Many of Baltimore’s City Services Still Offline Two Weeks After Ransomware Attack

Hundreds of Thousands of Users Targeted Daily With Would-Be WannaCry Imitators

Phishing Campaign Delivers Multi-Feature, Open-Source Babylon RAT

More Than 100 US Businesses Affected by Ryuk Ransomware Since August 2018, Finds FBI

Voices of Security

X-Force Red in Action

A Secure Start

On the Front Line With IBM X-Force IRIS

High Stakes, Rising Risks: The Ripple Effects of Cybersecurity in the Healthcare Sector

Industrial Control Systems Security: To Test or Not to Test?

Challenges and Opportunities to Close the Cybersecurity Gap in the Financial Services Industry

GozNym Closure Comes in the Shape of a Europol and DOJ Arrest Operation

The Decline of Hacktivism: Attacks Drop 95 Percent Since 2015

Published Exploits for Accessing SAP Systems Put Security Teams on Alert

Penetration Testing Versus Red Teaming: Clearing the Confusion

Podcast: Lessons from a Gray Beard: Transitioning From the Military to Cybersecurity

Podcast: Foundations for a Winning Operational Technology (OT) Security Strategy

Podcast: ‘You Can Never Have Too Much Encryption’

Podcast: Automating Cyber Resilience Best Practices With Dr. Larry Ponemon

Webinar: Guardium Tech Talk: An Integrated Approach to Data Risk Management

Webinar: The Debrief: Using Tools and Methods From the Intelligence Community to Stop Threats to Your Organization

Webinar: Operational Technology Security in the Age of Digital Transformation

Webinar: Leaders & Laggards: The Latest Findings from the Ponemon Institute’s Study on the Cyber Resilient Organization

Tag: Vendor Management

The Cybersecurity Industry’s Third-Party Risk Management Problem Is Rooted in Visibility

How to Make Third-Party Risk Management Second Nature

Tick Group Malware Campaign Highlights Need for Stronger Supply Chain Security

Why It’s Time to Cross Out the Checklist Approach to Vendor Security

Playing It Smart for Data Controllers and Processors

The Competing Claims of Security Vendors Sow Customer Distrust

Oh, Negative! Red Cross Donor Breach Nabs 550,000 Records

Dealing With Third-Party Vendor Connections in Your Network

Accountability Key to Third-Party Security Management