Risk Management Blog and Articles

January 16, 2020

7 Questions for a Vendor Risk Assessment

Third party risks continue to be a serious cybersecurity threat, so properly assessing a vendor is paramount to any risk management strategy. According to Gartner, 71% of organizations reported their network contains more vendors than it did three years before. This number is expected to grow even larger in the next few years.
January 9, 2020

Vendor Inherent Risk and What it Means to Your Third Party Risk Management

Inherent risk takes into account how a company is using their third-parties and what risk do they pose to the organization. Here's how to calculate it.
December 13, 2019

Designing your Third-Party Risk Management program: key essentials

ThirdPartyTrust COO shares some key points you need to take into consideration when creating a framework for your third-party risk management program.
July 6, 2018

Data is the New Oil and Breaches are the New Spills; So Where is the Leak?

The former CEO of Intel, Brian Kzranich said last month, “Data, I look at it as the new oil. It’s going to change most industries across the board. Oil changed the world in the 1900s. It drove cars, it drove the whole chemical industry,” Krzanich explains.
April 23, 2018

How is Cyber Shaping the Insurance Industry? Learn From Pros at Allstate, Trustmark and BCSF

We participated in a panel at the OnRamp Insurance Conference. Here's some insight into how cybersecurity is shaping the insurance industry.
March 27, 2018

ThirdPartyTrust Infosec Interviews: Rocio Baeza, CEO CyberSecurityBase

Hi, everyone. This is Jeff Spetter from ThirdPartyTrust and I had the great pleasure of speaking with Rocio Baeza, CEO of CyberSecurityBase. Here’s a recap and audio of the interview.  Rocio Baeza the CEO and Founder of CyberSecurityBase, helping rising tech companies get started with information security. The mission is to simplify security, teach that model, and empower tech leaders. Given her work, she understands the limitations of resources companies may have to invest in cybersecurity. She doesn’t necessarily recommend for smaller organizations to follow frameworks meant for large enterprises. Because of the limitations of resources , both time and capital, […]
December 20, 2017

Emerging Technology, Unknown Risks: DePaul University’s Fourth Annual Cyber Risk Conference Part Two

Panelists answer audience questions at DePaul University's Fourth Annual Cyber Risk Conference. Including what constitutes a vendor and risk profiles.
November 29, 2017

EMERGING TECHNOLOGY, UNKNOWN RISKS: DEPAUL UNIVERSITY’S FOURTH ANNUAL CYBER RISK CONFERENCE | PART ONE

Here are our takeaways from the panel moderated by Anders Norremo, CEO of ThirdPartyTrust, on the topic of The Cloud and Third Party Vendor Managament.
November 21, 2017

2017 VENDOR RISK MANAGEMENT BENCHMARK STUDY | PROTIVITI & SHARED ASSESSMENTS

The external risk environment is changing quickly as massive and costly cyber attacks have struck in the past couple years, continuing to challenge organizations to re-think approaches to vendor risk management.