CONTACT US
Third Party Risk Management - Consultancy, Assessment & Advisory

Newsroom

New Black Kite FocusTags provide instant visibility of high-profile cyber events at scale

Black Kite, the leader in third-party cyber risk intelligence, announces the availability of FocusTags™, a fast and simple way for users to track high-profile cyber events and quickly identify which vendors have been affected within their supply chain. This latest capability furthers the company’s mission to provide continuous monitoring of vendors to identify and mitigate…

LEARN MORE

GRC 20/20 Quantifies Return on Investment with ProcessUnity Vendor Risk Management

Independent research examines the measurable benefits of ProcessUnity VRM Imagine what business results you could achieve if your third-party risk management (TPRM) program ran as smoothly as possible. At its most efficient, your program could capture complete visibility into third-party risk to protect organisational assets and sensitive data. This insight allows you to proactively manage risk, maintain operational resiliency and…

LEARN MORE

3 Third-Party Risk Lessons from the Lapsus$ Hacks

Proactively mitigate third-party risks with vendor engagement and issue response strategies  Lapsus$, a criminal hacking group, has breached multiple third-party software services over the past few months. The first identified attack occurred in January 2022 at Okta, followed by a subsequent attack at Globant. These large-scale providers of IT applications serve the likes of Cloudflare, Peloton and Chipotle. In…

LEARN MORE

Four Recommendations for Securing Your Supply Chain

Last year, cyberattacks on third-party vendors cost organisations in various industries billions of dollars. From major banks to healthcare to governments, no one is immune. But throwing more budget at the problem is not the solution. BlueVoyant’s recent survey of 1,200 global security executives across industries revealed that despite more focus and budget going to…

LEARN MORE

Replay our Fireside Chat: Key success factors in building a TPRM program – 23/03/22

The global epidemic, geo-political tensions and continuous data breaches such as SolarWinds and NotPetya have highlighted the importance of maintaining smooth supply chain operations. This is coupled with increasing regulatory pressure being placed on demonstrable risk assurance efforts, including the impending PRA Operational Resilience requirements and EU’s DORA Act. How can we address these challenges…

LEARN MORE

Webinar Replay: Aligning a Third-Party Risk Strategy Across Security, Privacy, Ethics, and ESG

Third-party risk management (TPRM) is a common thread that spans security, privacy, ethics, and ESG. However, these teams and leaders often do not collaborate to achieve a shared mission: reduce third-party risk. As the requirements for each individual risk domain increase, it’s not enough to have a tunnel-vision strategy to track and address vendor risks….

LEARN MORE

Black Kite named a Customers’ Choice in the 2022 Gartner Peer Insights™ ‘Voice of the Customer’: IT Vendor Risk Management

Black Kite, the leader in third-party cyber risk intelligence, has been recognised as a Customers’ Choice in the latest Gartner Peer Insights™ ‘Voice of the Customer’: IT Vendor Risk Management’ report. Based on end-user feedback (32 reviews as of Nov ‘21), 100% of the customers that reviewed Black Kite would recommend the platform to their peers,…

LEARN MORE

Are You Ready for the PRA’s New Guidelines on Outsourcing and Third-Party Risk Management?

The clock’s ticking!  If you’re a financial services institution regulated by the Prudential Regulatory Authority, any third-party outsourcing agreements you enter into after 31 March 2022 — that’s less than two months away — will have to comply with their new outsourcing and third-party risk management guidelines.  And you’ll have to revise agreements you already have…

LEARN MORE

OneTrust White Paper: The Business Value of Third-Party Risk Management Software

The increased reliance on third-party vendors for businesses to advance digital transformation has never been more important than now. However, the swift adoption and complex vendor relationships can leave gaps in how organizations properly vet and track their third parties that are both comprehensive and efficient. These gaps can increase your exposure to risk and…

LEARN MORE

ESG Risk – What’s New in Climate Metrics and Reporting Requirements

As we head into 2022, a spate of fourth-quarter announcements have given us a good window in terms of what to expect in the new year and beyond for climate metrics and reporting requirements. Three points in particular are important to highlight for third party risk management: Newly updated Task Force on Climate-related Financial Disclosures…

LEARN MORE