What is the NIST framework?

What is a NIST framework

RiskXchange will not only help you understand the NIST framework but will find a cybersecurity framework that works for you and your business. Published by the US National Institute of Standards and Technology (NIST), the NIST cybersecurity framework is a set of guidelines used for mitigating organisational cybersecurity risks. The framework is based on existing guidelines, standards, and practices.   The NIST framework provides … Read More

How to choose a cybersecurity framework that works for you

How to choose a cybersecurity framework that works for you

A cybersecurity framework provides security teams with a set of standards and a common language across borders and industries to understand security postures. With a cybersecurity framework in place, it can help define the procedures and processes that your organisation must take to monitor, asses and mitigate cybersecurity risk.  Let’s take a closer look at the most common cybersecurity frameworks.  … Read More

Why you should choose an Integrated Risk Management approach 

choose an integrated risk management approach

Why do we need to talk about an Integrated Risk Management now? When the options for digital solutions were relatively limited and technological advancement moved at a slower pace, risk management was largely determined by compliance. Additionally, as each team or department within an organisation was the best authority on how to achieve regularity compliance, they could be left to … Read More

What to consider when selecting a third party risk management framework

RiskXchange A Framework For Third Party Risk Management RiskXchange The leader in Third-Party Cyber Risk Management

In March 2021, the Volkswagen Group of America learnt that one of its vendors left unsecured data online, exposing contact information and social security numbers of over 3.3 million customers. The attack severely damaged the brand’s reputation because over 97% of the victims were Audi customers and interested buyers. The cyberattack encapsulates the problem most companies face today—discerning which vendors … Read More

Vendor risk tiering and 3 Reasons to use it for effective vendor risk management

Vendor Risk Tiering for effective Vendor risk management

A survey revealed that only 34% of companies are confident that they can track vendor logins, while over 37% can track the vendors accessing their system—an indication that vendor security standards are fluctuating. What role does the vendor risk tiering play in all that? Given that businesses interact with over 180 vendors a week, it is understandable that organisations may have … Read More