by Chris Dorr | May 8, 2018 | Third Party Risk Management
Cloud services are used by 97% of all companies. A jaw-dropping 26% of those companies have experienced data theft from the public cloud, according to a fascinating new study by McAfee. That means cloud services have a 74% success rate when it comes to data security....
by Chris Dorr | May 4, 2018 | ISMS Consulting, Third Party Risk Management
In the past, I’ve written about the Shared Assessment group’s on-site third-party vendor assessment tool called the Agreed Upon Procedures, or AUP. This has been a very useful and cost-effective tool for performing an in-depth, independently...
by Terry Crowley | Mar 20, 2018 | Third Party Risk Management
Unless you’ve been meditating in a cave for the past month (and maybe even then) you’ve most likely heard some of the hype and wrangling around the Spectre and Meltdown vulnerabilities announced just after the New Year. These flaws have significant security...
by Michael Walsh | Jan 3, 2018 | ISMS Consulting, Third Party Risk Management
It seems to be an artifact of how technology is designed and developed that “new and improved” also frequently means “less secure.” In my experience, being an early adopter also makes you a de facto beta tester for security bugs. A quick scan of recent security news...
by Jeremy Sporn | Dec 21, 2017 | ISMS Consulting, Third Party Risk Management
The Importance of Cybersecurity for Legal Entities The American Bar Association (ABA) clearly appreciates cybersecurity as a major concern for law firms and legal entities, and views issues around third-party risk management (TPRM) as particularly crucial for its...
by Chris Dorr | Aug 25, 2017 | Third Party Risk Management
An interesting and potentially troubling event happened in the information security world on Wednesday, August 16, 2017. It wasn’t a major hacking attack or a massive data breach. It wasn’t the release of a new security tool, or the failure of a critical...
