Cybersecurity and Third-Party Risk

More about the book

Strengthen the weakest links in your cybersecurity chain. Organizations worldwide have faced a relentless wave of breaches targeting trusted vendors, with no company immune to third-party incidents, regardless of size. Advanced threats now exploit vulnerabilities at the intersection of cybersecurity and third-party risk management. In this insightful guide, veteran cybersecurity expert Gregory Rasner outlines strategies to secure your organization's network against third-party vulnerabilities. Readers will learn to move beyond basic checklists to establish a dynamic, effective, and ongoing system for mitigating third-party cybersecurity risks. The author emphasizes the importance of conducting thorough due diligence on third parties linked to your networks and maintaining current, reliable information about them. Key insights include identifying critical language in third-party data contracts, whether offshoring or outsourcing data security arrangements. This resource is ideal for professionals and executives tasked with safeguarding their organizations against external threats. It equips business leaders to understand third-party risk management fundamentals, conduct robust intake and ongoing due diligence, perform on-site assessments, secure software supply chains, and continuously monitor vendors to prevent breaches.