Risk Management Blog and Articles

July 6, 2018

Data is the New Oil and Breaches are the New Spills; So Where is the Leak?

The former CEO of Intel, Brian Kzranich said last month, “Data, I look at it as the new oil. It’s going to change most industries across the board. Oil changed the world in the 1900s. It drove cars, it drove the whole chemical industry,” Krzanich explains.
May 23, 2018

Guest Blog: A GDPR Primer to Meet the Deadline Next Week

Discussions on privacy laws have taken front and center in recent weeks as GDPR (General Data Protection Regulation) begins to be enforced by European Union (EU) member states on May 25, 2018.  As we have been discussing for a while, there is confusion as data collectors try to figure out the impact of this legislation.  There is no question that large, multi-national corporations will have to comply and many of these corporations are already in compliance.  However, with this deadline just around the corner, smaller companies that do not actively target EU residents are struggling with how this legislation impacts them. Until […]
April 23, 2018

How is Cyber Shaping the Insurance Industry? Learn From Pros at Allstate, Trustmark and BCSF

We participated in a panel at the OnRamp Insurance Conference. Here's some insight into how cybersecurity is shaping the insurance industry.
March 27, 2018

ThirdPartyTrust Infosec Interviews: Rocio Baeza, CEO CyberSecurityBase

Hi, everyone. This is Jeff Spetter from ThirdPartyTrust and I had the great pleasure of speaking with Rocio Baeza, CEO of CyberSecurityBase. Here’s a recap and audio of the interview.  Rocio Baeza the CEO and Founder of CyberSecurityBase, helping rising tech companies get started with information security. The mission is to simplify security, teach that model, and empower tech leaders. Given her work, she understands the limitations of resources companies may have to invest in cybersecurity. She doesn’t necessarily recommend for smaller organizations to follow frameworks meant for large enterprises. Because of the limitations of resources , both time and capital, […]
March 5, 2018

OWASP Chicago February Meetup Summary and Presentations

The evening at the OWASP Chicago meetup was filled with really informative content in a couple of areas all tied to application security. Here's a recap.
December 20, 2017

Emerging Technology, Unknown Risks: DePaul University’s Fourth Annual Cyber Risk Conference Part Two

Panelists answer audience questions at DePaul University's Fourth Annual Cyber Risk Conference. Including what constitutes a vendor and risk profiles.
November 29, 2017

EMERGING TECHNOLOGY, UNKNOWN RISKS: DEPAUL UNIVERSITY’S FOURTH ANNUAL CYBER RISK CONFERENCE | PART ONE

Here are our takeaways from the panel moderated by Anders Norremo, CEO of ThirdPartyTrust, on the topic of The Cloud and Third Party Vendor Managament.
November 21, 2017

2017 VENDOR RISK MANAGEMENT BENCHMARK STUDY | PROTIVITI & SHARED ASSESSMENTS

The external risk environment is changing quickly as massive and costly cyber attacks have struck in the past couple years, continuing to challenge organizations to re-think approaches to vendor risk management.
October 30, 2017

Keynote Panel: Building Trust in the Third-Party Ecosystem

We attended the Cyber Security Chicago conference and share some insights about the third-party ecosystem, including IoT Security and DevSecOps.