In a year that has been marked by insurmountable change, growth, and challenges, it’s important to take a step back and recognize what we’ve learned and created. At CyberGRX we not only worked hard to provide a data-first and critical approach to third-party cyber risk management (TPCRM) in the face of rapid societal shifts, but also to bring a new, fun, and creative approach to TPCRM content. Take a look at our list of our favorite pieces of content from the year before we say goodbye to 2020, and hello to 2021:
January: The cloud is the future
The cloud computing model became increasingly popular in the 2000s because it provides users with new and unique network access to a shared pool of data and technology with minimal administrative effort required. This year, it’s no secret that digital transformation and the shift to remote working caused cloud computing to dominate today’s information technology delivery model . So, why cloud – and furthermore, why cloud risk assessments? Read our blog to find out more!
February: If you’re not training your employees, you need to be
Investing in sharing knowledge with employees and vendors is crucial to the effectiveness of any cybersecurity program. Bad actors will exploit any weakness they find, whether it be an employee or a third-party vendor, and the only way to avoid this is through rigorous training. So, where should you begin with creating a program and what should you include? Read on for some helpful tips!
March: Evaluate Nth parties
Every company has critical supply chains and intricate ecosystems of employees, vendors, and customers that they work with to fulfill daily tasks, transactions, and other critical business operations. How do these relationships play a role in understanding and creating your cyber risk management program? Our blog takes you through the details.
April: Third-party cyberattacks are a global phenomenon
As digital transformation continues all over the world, cyberattacks can be found in an increasing number of countries. In the last decade, Australian governments and companies have had an increased number of attacks, thus having to implement new safeguards to sustain crucial privacy and data protection standards. But, how have third-parties played a role? Read our blog to find out more!
May: Where do I begin when evaluating auto-inherent risk?
Are you still using static assessments? If you are, it’s likely that you’re missing out on vital aspects of risk intelligence. Luckily, CyberGRX uses a modern approach to cyber risk management, arming third-parties and enterprises with dynamic and actionable insights on inherent risk. This year, we created a datasheet to tell you all about it. Check it out here!
June: Digital transformation continues to take the world by storm
Digital transformation has taken the world by storm in 2020. Between the transition to remote working and the ever-increasing prevalence of technology in our lives, it’s important to understand the scope of the impact it’s having on businesses. CyberGRX and the Ponemon Institute surveyed 581 IT security and 302 C-suite executives to determine that impact and provide data on how it can be resolved. Get the full report to learn more!
July, August, and September: Cyber risk management within industries
Different industries require different approaches to third-party cyber risk management. In order to fully understand your risk and create a program that effectively mitigates it, access to and understanding of data-backed insights is necessary. Luckily, we have your back. Check out some of our favorite industry-specific content below:
October: How CyberGRX helped one of the world's largest insurers save resources
Business grows rapidly, leading to massive ecosystems of vendors, customers, and employees. A company might have their security systems on lockdown, but they lose control when it comes to the systems of their vendors. Read our case study conducted on QBE to learn how CyberGRX became a force multiplier for the company in creating an effective and scalable third-party cyber risk management program.
November: New insights from our exchange
With over 80,000 third parties ingested and nearly 4,000 third parties assessed, we’re using important data from our exchange to inform the industry and organizations around the world of third-party risk insights and trends. Check out volume one of our insights!
December: Podcasts are the new books
The Cyber Info Exchange, a CyberGRX podcast hosted by Dave Stapleton, CISO, and Shane Hasert, CISSP, takes a deep dive into all things cybersecurity! We feature guests from across the industry in each monthly episode with a Q&A format. Check it out!