28th June 2017
Why EVERYONE Needs To Be Concerned About Vendor Security We are continuing to learn more about the breach at Larson Studios which resulted in the release of 10 episodes of Orange Is The New Black (OITNB) as well as other titles from Netflix, ABC, CBS, and Disney. While the analysis of the event in Variety…
LEARN MORE12th June 2017
Shared Assessments has released its updated guide to Evaluating Cloud Risk for the Enterprise. Using this Cloud Guide, risk managers can begin to evaluate specific areas of cloud risk, ask the right questions and ensure they get answers they understand. Executive Summary This Guide is the second iteration of the Evaluating Cloud Risk for the Enterprise,…
LEARN MORE1st June 2017
Ready or Not – IoT Third Party risks have arrived Research conducted by The Ponemon Institute, and shared in a study from Shared Assessments, has found that efforts to mitigate IoT Third Party risks need to significantly improve. The research highlights the fact that companies are relying on legacy technologies and governance practices to address potential…
LEARN MORE25th May 2017
A few thoughts on GDPR and Third Party Risk – A year today, on May 25th 2018 the biggest change to data protection law in 20 years will kick in. The EU General Data Protection Regulation (GDPR) is its replacement. By now you know the risks – any breach of Personally Identifiable Information (PII) can result in new penalties…
LEARN MORE14th March 2017
Third Party Risk Rating During On-Boarding Including Third Party risk rating as a strategic part of a robust risk management program provides the opportunity for early identification of the wide range of issues that ripple through both regulated and unregulated industries wherever outsourcing is present. Scoring third parties consistently was ranked as the most challenging…
LEARN MORE18th October 2016
A few thoughts on Vendor Risk – One of the key problem areas of enterprise risk management is vendor risk. Managing hundreds to thousands of vendors, suppliers, outsourcers and other third-party relationships is difficult in the best of financial times. With shrinking budgets and fewer staff, how can vendor risk management be performed correctly? These…
LEARN MORE25th May 2016
A few thoughts on GDPR and Managing Third Party Risk – Today marks the 2 year countdown until EU General Data Protection Regulations (GDPR) come into full effect. GDPR will expand and extend the current data protection requirements for anyone processing Personally Identifiable Information (PII). The regulation introduces some tough new penalties of fines of…
LEARN MORE