Third-Party Information Risk Security Executive Summary
Third-party risk is a reality for every organisation, whether it be through the supply chain, vendors or outsourced service providers. These suppliers and partnerships involve sharing sensitive and personal information and, unfortunately, gives way to increased information security risks in the form of data breaches and leakage.
In this executive summary, InfoTrust covers;
- Understanding Third-Party Information Security Risks
- Building a Robust Framework to Mitigate Risk
- Policies that capture information security expectations
- Mechanisms to manage third-party information security risks
- Processes that enable policies and mechanisms to be enforced
To find out more download your copy today.
see our
Related resources
In February, CrowdStrike released its annual Global Threat Report for 2021, sharing key findings, trends, and recommendations to protect your business in the coming year and beyond. CrowdStrike’s notable trends include:
In December CrowdStrike released its annual Cyber Front Lines Report for 2020, sharing statistics, trends, and findings into the current global cyber landscape. CrowdStrike’s notable findings include:
In the past decade, cyber attackers have significantly shifted their techniques and tactics, resulting in traditional security controls becoming all but obsolete. With cybersecurity incidents also increasing in frequency and sophistication, businesses are at greater risk than ever before. Although purchasing more defence measures can help to remedy the situation to an extent, it will not eliminate all cybersecurity threats. Organisations also need to manage their security well by having a solid foundational security strategy. In this summary, InfoTrust provides three key steps to a well-rounded cybersecurity plan and covers how to achieve them with limited resources.
In September CrowdStrike released its 2020 Threat Hunting Report, reviewing intrusion trends and providing insights into the current landscape. Within this report, CrowdStrike takes a look at:
With our growing awareness of the threat of cyber incidents, it would be easy to assume that we must have built up the necessary defences to protect our businesses. However, our increasing reliance on technology, while bringing enormous business advantages, increases our vulnerability, expanding the attack surface. Attackers are constantly adapting their methods and have learnt to use the likes of data mining and artificial intelligence to find new entryways into our systems. So, while the technology that we use today creates huge business advantages, it also creates new security risks.
Agari Cyber Intelligence Division reports first-ever Russian Business Email Compromise (BEC) gang, referred to Cosmic Lynx, in their latest threat report.
Cosmic Lynx has targeted individuals in 46 countries, across more than 200 BEC campaigns. The gang has employed a dual impersonation scheme, exploiting DMARC controls to spoof the target businesses, making the attacks appear as authentic as possible.
To find out more, download the report today.
We're Here To Help