Risk Management Blog and Articles

May 26, 2022
okta breach third party risk supply chain

MITRE Presents System of Trust Framework to Address Supply Chain Security Risks

MITRE is presenting a prototype framework that defines and quantifies risks and supply chain security concerns, including software.
May 24, 2022
New Executive Order to Improve the Nation’s Cybersecurity

New Executive Order on Cybersecurity: The Impact On Your Business

Executive Order 14028, titled Improving the Nation’s Cybersecurity, seeks to enhance the security and integrity of the software supply chain.
April 14, 2022
what is inherent risk

What is inherent risk in vendor management?

Learn what is inherent risk, how to measure it, and why it's a useful tool for your vendor risk management program.
April 4, 2022
CAIQ and SIG third party risk management

CAIQ vs SIG: Top Questionnaires for Vendor Risk Assessment

How is one questionnaire different from another, and how do you decide which ones to use in vendor risk assessments? We compare CAIQ vs SIG.
March 29, 2022
tprm and nist compliance

TPRM and NIST Framework – Everything you need to know

Third party risk management and NIST: Learn how to evaluate vendor compliance with security, regulatory, and privacy requirements.
February 24, 2022
ISO 27001 requirements third party risk management

Vendor risk assessment for ISO 27001 requirements

Learn what ISO 27001 controls apply to vendor risk management and how to successfully map them to your TPRM framework.
January 19, 2022
get started with soc 2

Get Started with SOC 2 for Third Party Risk Management

What is a SOC 2 report and why is it essential in due diligence and vendor risk management programs? Here's what you need to know.
September 16, 2021
cmmc compiance third party vendor supply chain

CMMC Compliance and Third-Party Risk Management

Here’s everything you need to know about the CMMC and how it impacts your third-party risk management (TPRM) strategy.
August 31, 2021
gdpr UE

GDPR and Third Party Vendors: Ensuring Compliance Across your Supply Chain

What's the impact of privacy regulation in the use of service providers? Here's what you need to know about GDPR and third party vendors.