Australian organisations are paying more attention to vendor risk, but many still have gaps in how they assess suppliers, protect SaaS data and translate cyber security risk for business leaders, according to the founder of Brisbane-based Aegis Cybersecurity, Luke Irwin.

Luke Irwin, Aegis Cybersecurity
Irwin said organisations should look beyond point-in-time questionnaires and contract checklists, and take a closer look at who has access to their systems, how critical SaaS platforms are backed up, and whether suppliers’ suppliers are creating risk.
Aegis Cybersecurity is one of the firms invited by iTnews’ sister publication