SecurityScorecard Blog: Risk Mitigation / Management

Performing a cyber security risk analysis helps your company identify, manage, and safeguard data, information, and assets that could be vulnerable to a cyberattack. Such analysis helps you identify systems and resources, determin... Keep Reading

Can you afford a data breach by a third party vendor? Chances are, you can’t. Third party breaches cost more than in-house breaches, to the tune of $13 more per compromised record, according to Ponemon’s 2018 Cost of a Data Breach... Keep Reading

There seems to be a new mention of another cyberattack in the news almost daily. So it’s increasingly important to remain vigilant and not to let your company fall victim to a cyberattack. One way to ensure you stay safe is to bui... Keep Reading

The process of assessing a third party's security risk, including a risk assessment questionnaire and evidence collection, is not easy. Often an already complicated process is muddled with day to day activities like getting your t... Keep Reading

When you work with third parties, their risk is your risk. Common risks associated with vendors include everything from compliance risk to operational risk to financial and reputational loss. According to Ponemon’s 2018 Cost of a... Keep Reading

It’s often worth it to take on some risk when it comes to your third parties — third parties are an essential part of your business ecosystem. They’re your vendors, partners, and contractors. They improve efficiency, extend ... Keep Reading

When we began our research into the cyber security postures of political parties, we started with what we had: the scorecards generated by the SecurityScorecard. The great thing about using a security scorecard is that it can quic... Keep Reading

Do you know your hackers’ window of opportunity? That’s the critical question that you need to be asking your own organization, third-party vendors, insurance applicants, and M&A targets. Standards like NIST CSF and SIG c... Keep Reading

Sometimes your biggest security challenge is the vendors who are unknown to the risk management team. Traditionally, in order to determine vendors an enterprise is engaged with, it required working with procurement and surveying ... Keep Reading