The SolarWinds attack has cybersecurity leaders everywhere taking a hard look at third-party risk. But it’s one thing to have a fresh strategy and quite another to actually start holding vendors accountable for their own security.
Download this expert briefing to learn:
The areas that risk managers commonly...
With the explosion of remote business, we are now digitizing many of our documents and processes. Entrust’s Jay Schiavo explains what new mindset this shift requires, what’s needed to ensure document authenticity and integrity.
Large Service Provider Achieves
Overall Improved Risk Profile with
Closed-Loop Change Management
and Full Network Context
Trusted by leading global brands for more than 40 years,
this service provider is one of the largest in Europe.
With more than 10,000 employees and nearly
20 operations centers throughout...
Third parties are one of the top attack vectors and according to a recent
Ponemon report, in the last three years, the financial services industry
experienced the second most third-party breaches despite spending the
most time on assessments (over 17,000 hours/year).
In response to the growing threats, regulators...
Attacks through third parties are even more prevalent, which jeopardizes not only the security of sensitive data, but it also provides attack vectors for hackers to take down critical systems via IoT, unauthorized access, etc. Supply chain systems are an integral part of the oil and gas industry’s survival and bad...
The financial services industry is a leading target for cyber criminals because there’s not just one way to profit from an attack. Whether it’s the direct theft of funds and customer data, extortion, or fraud, financial institutions have a metaphorical bullseye on their backs when it comes to...
The pandemic only amped up the need for better bandwidth, visibility and centralized management, and all within a budget that will make it possible. Prior to COVID-19, Kumar Ramachandran of Palo Alto Networks declared 2020 the “year of the early majority” for SD-WAN adoption.
Ramachandran, former CEO of...
The distributed workforce, combined with the need to modernize and improve operational efficiency, has reframed digital transformation priorities and introduced new areas of risk to today's enterprise. In light of ongoing macroeconomic demands, the CISO is facing increasing pressure to deliver value.
If...
Everything has changed. Organizations have quickly pivoted towards the "new norm", adopting new practices and new technology solutions to support the business. Security multi-year strategies have not caught up. This new norm introduced new security threats to an already crowded threat landscape at a time when...
As many IT teams work overtime to enable remote workers, maintaining security practices and compliance may not be top of mind, but threat actors are actively seeking opportunities to benefit from current circumstances.
Although enabling a remote workforce is typically a common practice, some particularly urgent and...
The ability to deliver continuity and scale is a hurdle to overcome when facilitating remote work. Giving a large number of end users access to corporate resources quickly is no easy task.
How can organizations ensure core business systems are scaled to handle the load and how can they quickly scale up and down, on...
In today's dynamic cyber world, third-party security is necessary but can be challenging to implement. How did a leading investment firm succeed in creating a robust and efficient third-party security process?
In this exclusive webinar, CAPTRUST IT Governance, Risk, and Compliance leader Jon Atchison will discuss the...
Third-party risk management (TPRM) is more important now than ever. The practice extends far beyond "checking the box" for compliance. And while compliance is a critical component, recent market turbulence has organizations prioritizing business continuity, financial due diligence, and business resilience. How can you...
Managing risk complexities posed by multiple third-party vendors will always be a challenge. CISOs, security and compliance professionals are making third-party risk management a priority like never before due to remote working, supply chain complexity, cloud storage, phishing and ransomware attacks, and regulations...
Financial institutions face two major network security related challenges while working to serve their customers: the constant demand to improve in order to successfully compete in the market and regulatory compliance.
Yet, when it comes to security, the InfoSec team often uses slow, manual (and error prone)...
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing ffiec.bankinfosecurity.com, you agree to our use of cookies.
