Webinar announcement: Integrating procurement procedures to complete TPRM strategy

ird-party security

In a security landscape in which our networks, especially the supply chain, are facing increased risks, many businesses are scrambling to adopt the latest third-party security best practices – a strong TPRM strategy. Today, procurement is the bedrock on which many organisations operate. In an era of comparative advantage, business survival hinges on our cooperation with external parties that streamline … Read More

What is an attack vector and how can you avoid it?

cyberattack vectors

RiskXchange generates objective and quantitative reporting on a company’s cyber security risk and performance.  Cybercrime is ever evolving, and hackers are changing their tactics daily. Malware is commonplace but ransomware is the biggest threat to organisations in 2021. Some attack vectors – like phishing and credential theft – have been around for quite some time while others have cropped up in recent years causing widespread damage. What is an attack … Read More

Third-party vendor management best practices for your security posture

Third-party vendor management

Businesses today are no longer singular entities that operate in silo; regardless of the size and scale of operations, almost every organisation depends on various third parties to carry out their activities without disruption. This also means means the importance of third-party vendor management has increased. To really benefit from outsourcing or specialisation, procurement teams have had to transfer a … Read More

How to ensure vendor security in a hybrid working environment

vendor security in a hybrid working environment

The pandemic has seen our lives shift from the office to home, bringing new nightmares for IT security heads. The work-from-home culture has created new challenges for businesses as they see their attack surface expand and their cybersecurity needs intensify. How do you ensure your vendor security in a hybrid working environment is still intact? According to the World Economic Forum’s Global Risk Report, in 2020, cybercrime … Read More

How has supplier due diligence responded to modern supply chain threats?

supplier due diligence

With the European Union forecasting that this year will see a four-fold increase in software supply chain attacks in 2021, compared to last year, vendor security has become an enormously important priority for almost every business this year. On the heels of cybersecurity incidents like the SolarWinds breach and the Codecov cyberattack, we need to relook at our processes; all … Read More

How do you assess cybersecurity risk in a post-pandemic environment?

post-pandemic environment

In 2021, we’re navigating both longstanding and unique security issues that undermine the time and money invested in a robust security posture. From weakened networks compounded by poor WFH practices to sophisticated and layered phishing campaigns, there are many factors that threaten the work we do today. In fact, around 80% of senior IT employees and security leaders are convinced … Read More

What we can learn from the Codecov breach case

Codecov breach case

None of us are strangers to news of cyberattacks and security incidents that have financially staggering repercussions and those that cause significant reputational damage.  Recently, however, news of Codecov breach, a supply chain attack, one that remained undetected for months until it was far too late — represents a dangerous turn in the recent spate of attacks that includes the … Read More

Reinforcing attack surface cyber security during business growth

RiskXchange Reinforcing attack surface security during business growth 1 RiskXchange The leader in Third-Party Cyber Risk Management

You’d be hard-pressed to find a business whose goals don’t include growth in some form of way.  Growth presents itself in many ways, whether you are expanding your infrastructure, your team, or breaking into new markets. Growth is inevitable and necessary for surviving in the current global business landscape.  The only way to ensure that this growth is sustainable is … Read More

Trends shaping the traditional compliance risk assessment in 2021

traditional compliance risk assessment in 2021

In today’s tumultuous global landscape and complex regulatory environment, compliance is the one reliable way organisations can make sure the wheels aren’t flying off. What we’ve seen though is that our general approach to compliance risk assessments fail to create a more proactive spirit across our operations. With the disruptions caused by the pandemic, the insidious nature of modern cyberattacks, … Read More