Rocco Grillo, Managing Director, Alvarez & Marsal
Cybersecurity risks and exposures for organizations are at an all-time high andrising.Beyond the cyber risks and vulnerabilities emanating from within an organization’s own network, organizations augment their exposure when they hire third-party vendors. In fact, vendors that provide hosting services or enable key supply chain functions of an organization are considered by many observers to be one of the most significant insider threats to networks.
Vendors such as core hosting providers, cloud service providers, and the evolution of IoT devices used through third-party vendors or service providers, and at times fourth party service providers, create another level of significant risk to the organization.An organization can have fortress-grade security posture within its four walls, but when it outsources to third-party service providers and provides a connection to its network, the organization is no longer in control of the entire perimeter.
To be sure, foregoing the service of vendors completely is not a realistic option. Increasing global competition andthe ever evolving regulatory and compliance landscape makes it…