ETCIO South-East Asia’s Post

Last week, Larry Kinkaid, cybersecurity consulting manager at BARR Advisory, and Joshua Schmidt, vCTO, sat down to discuss the nuances of vendor risk management and the shortcomings of security questionnaires. ➡️ Missed the live webinar? Check out the recap: https://hubs.li/Q02ztdll0 #TPRM #SecurityQuestionnaires #VendorRiskManagement

Navigating cyber risks in 2024? Let's do it together! Join us for a deep-dive webinar on February 21 with Brian Fricke, CISSP, CISM, CISO, City National Bank Florida to discuss the top cyber risk trends and strategies for 2024, including AI-powered risk management tools, autonomous risk assessment, automated compliance, third-party cyber risks, and more. Register now! https://hubs.li/Q02fyXDS0 #cyberrisk #2024 #riskmanagement #automatedcompliance

Did you know? Nearly half of organizations surveyed in our latest Cybersecurity Buyer Intelligence Research report, sponsored by AuditBoard. indicated they do not conduct in-depth risk assessments for their third-party partners. Ensure your business isn't left in the dark. Access the CBIR and learn more about third-party risk management strategies: https://bit.ly/3A18fGI #riskassessment #cybersecurity #thirdpartyrisk

Installment #3 is out on Substack. A New Way of Thinking of Cyber Risk Management (because the definition of insanity is doing the same thing repeatedly expecting different results.) I share how to approach the daunting task of 10-K readiness under the new SEC rules and the successful strategy we used to do a zero-deficiency audit under the accelerated filing for Sarbanes-Oxley. I also explain how the new CRMGSID rule from SEC is like SOX (so you don't have to start from scratch.).

Did you know? Nearly half of organizations surveyed in our latest Cybersecurity Buyer Intelligence Research report, sponsored by AuditBoard. indicated they do not conduct in-depth risk assessments for their third-party partners. Ensure your business isn't left in the dark. Access the CBIR and learn more about third-party risk management strategies: https://bit.ly/3A18fGI #riskassessment #cybersecurity #thirdpartyrisk

Following the popularity of our recent CREW webinar discussing cyber regulation and enforcement activity, we wanted to share our blog on this very relevant topic with you. It is crucial for big businesses to incorporate effective cyber risk management plans into their day-to-day operations. Check out our full blog post here - https://lnkd.in/gfP6mAYq

Did you know 51% of companies have experienced a data breach caused by a third party? Don't become a statistic. Explore our overview of third-party risk management tools, from questionnaires, scanners, to shared assurance providers. Uncover the strengths and weaknesses of these and other TPRM tools in our latest article. Make informed decisions to protect your supply chain. #tprmtools #tprm #cybersecurity #informationsecurity #supplychainrisk https://lnkd.in/eMbsw2gd

There is more than one way to skin a cat(fish). Same goes for securing suppliers. Here’s a concise breakdown of the various approaches:

This latest Global Knowledge Brief highlights just how significant cyber risks associated with third parties have become and addresses where internal auditors can fit into third-party cyber risk management. IIA members can access the report here: https://lnkd.in/gqfNEVqA #IIASingapore #CyberRisks #3rdParty #RiskManagement #InternalAudit

🔍 Third-Party Risk Management with FAIR 🔍 At FAIRCON24, the spotlight is on using the FAIR model to quantify and manage third-party cyber risks. With external vendors introducing significant vulnerabilities, FAIR helps organizations assess these risks in financial terms, making it easier to prioritize investments and communicate impact to executives. Key takeaway: FAIR turns vague risk estimations into clear, data-driven insights, enabling smarter, business-aligned decisions. #cybersecurity #thirdpartyrisk #FAIRmodel #riskmanagement #FAIRCON24 https://lnkd.in/ehzBPpts