Risk Management Blog and Articles

May 4, 2022

Log4Shell zero day made 87% of IT leaders feel less confident

The cloud has many third party dependencies, and Log4Shell is a reminder that they can be vulnerable. How's your cloud security?
April 28, 2022

Zero day exploits are behind half of the biggest vulnerabilities

The surge in zero day exploits is an ongoing concern for security teams. Get the latest research and tips to reduce risk in your network.
April 14, 2022
what is inherent risk

What is inherent risk in vendor management?

Learn what is inherent risk, how to measure it, and why it's a useful tool for your vendor risk management program.
April 7, 2022
What is a Zero Day Exploit third party risk management

What is a Zero Day Exploit?

Newly found vulnerabilities are only successful when attackers use exploits to leverage them. So what is a zero day exploit?
April 4, 2022
CAIQ and SIG third party risk management

CAIQ vs SIG: Top Questionnaires for Vendor Risk Assessment

How is one questionnaire different from another, and how do you decide which ones to use in vendor risk assessments? We compare CAIQ vs SIG.
March 31, 2022
what is due diligence

What is due diligence in third party risk management?

When assessing third party risk, one term usually comes up: due diligence. What is due diligence and how does it relate to vendor management?
March 29, 2022
tprm and nist compliance

TPRM and NIST Framework – Everything you need to know

Third party risk management and NIST: Learn how to evaluate vendor compliance with security, regulatory, and privacy requirements.
March 24, 2022
okta breach third party risk supply chain

Okta suffers third party data breach: Preventing supply chain attacks

The Okta breach put businesses on high alert. We explore the threat to Identity and Access Management solutions and third party risk.
March 23, 2022

TPRM integrations: Using vendor risk data in your business decisions

Get the most out of your technology stack by integrating your vendor management into every business process with these TPRM integrations.