Homepage
Open in app
Sign in
Get started
The Risk Exchange
Manage Third-Party Risk with CyberGRX
Follow
Cybersecurity Leadership Lessons from the Battlefield
Cybersecurity Leadership Lessons from the Battlefield
I am writing this from a battlefield. That is not a hyperbole or even metaphor. I am standing on Seminary Ridge where the Union lines…
CyberGRX
Jun 12, 2019
The Interaction of Rivers and Third Parties
The Interaction of Rivers and Third Parties
Third-party risk management and wilderness risk management have many similarities. One of the jobs of an effective wilderness exhibition…
CyberGRX
Jan 23, 2019
Ditch the QA Department and Improve Quality
Ditch the QA Department and Improve Quality
When I started my software quality career a little more than twenty years ago, we worried about things like rendering images on the…
CyberGRX
Oct 10, 2018
How Do I Select Which Vendors to Risk Assess?
How Do I Select Which Vendors to Risk Assess?
I have 25k vendors. How do I know which vendors to assess for cyber risk?
CyberGRX
Sep 20, 2018
The Persistent Nature of Risk, and Why it Matters
The Persistent Nature of Risk, and Why it Matters
So you’ve worked hard to develop, implement, and continually improve your organization’s cyber security program. You’ve been successful in…
CyberGRX
Aug 13, 2018
Vendor Risk Management: a Checklist
Vendor Risk Management: a Checklist
Looking to build or rebuild your vendor risk management practice? Here’s a checklist from our solution engineer that outlines high-level…
Jaz Frederick
Jul 26, 2018
Exchanges in History: What TPCRM Programs Can Learn from the Past
Exchanges in History: What TPCRM Programs Can Learn from the Past
Modern risk exchange concepts (the exchange of one with many like credit ratings and medical records) trace their roots all the way back to…
CyberGRX
Jul 18, 2018
Follow our blog for updates in your inbox
Tell Me More
Latest
3 Steps to Streamline the Vendor Risk Assessment Response Process
3 Steps to Streamline the Vendor Risk Assessment Response Process
Much of today’s news and guidance around third-party risk management focuses on the upstream customer, the organization doing the…
CyberGRX
Jul 17, 2018
Guide: The 3 Fundamentals of Vendor Risk Management
Guide: The 3 Fundamentals of Vendor Risk Management
We talk to hundreds of prospects and clients every year who are in an early stage on their journey to find a vendor risk management…
CyberGRX
Jul 3, 2018
Are Third-Party Cloud Applications Putting Your Data At Risk?
Are Third-Party Cloud Applications Putting Your Data At Risk?
In May of 2017, it was discovered that an exposed data repository, an AWS S3 bucket, had allowed semipublic access to the details of at…
Scott Schneider
Jun 29, 2018
Dynamic Data is the New Black For Third Parties
Dynamic Data is the New Black For Third Parties
The number of risk assessment requests a typical third-party or vendor receives is overwhelming. And it’s safe to say that you can expect…
CyberGRX
Jun 27, 2018
Trust: A Hidden Yet Valuable Benefit Of TPRM
Trust: A Hidden Yet Valuable Benefit Of TPRM
Trust is one of the most powerful currencies in business, but it’s hard to earn and even easier to lose. And one of the easiest ways to…
CyberGRX
Jun 25, 2018
The Power of an Exchange
The Power of an Exchange
Once a company has decided to purchase a tool to help manage third-party risk, they are faced with a few choices based on how software…
Peter Prizio
Jun 21, 2018
Annual Vendor Assessments are Dead: Get Dynamic
Annual Vendor Assessments are Dead: Get Dynamic
Conventional wisdom tells us that the cadence with which we should reassess a vendor’s cyber security posture should be dictated by the…
CyberGRX
Jun 21, 2018
I’ve Filled Out Those Damn Spreadsheets
I’ve Filled Out Those Damn Spreadsheets
I’ve been focused on building technology startups for over two decades now and have had the opportunity to build a few to significant scale…
CyberGRX
Jun 20, 2018
Mr. CFO or: How I Learned to Stop Worrying and Set an Operational Risk Management Budget
Mr. CFO or: How I Learned to Stop Worrying and Set an Operational Risk Management Budget
For such quantitative fields, CFOs and CROs often struggle to determine a holistic operational risk management budget (specifically risk…
CyberGRX
Jun 19, 2018
Are You Really Managing Third-Party Risk?
Are You Really Managing Third-Party Risk?
Risk management, in general, can be described in a five-step process. As a risk practitioner, you’ve likely taken your “critical” third…
CyberGRX
Jun 14, 2018
The Umbrella Effect — Cover Compliance With A Risk-Based Approach To TPRM
The Umbrella Effect — Cover Compliance With A Risk-Based Approach To TPRM
Data breaches via third parties are an increasing problem in many industries. So how can companies ensure their data is secure, even when…
CyberGRX
Jun 11, 2018
Top Third-Party Breaches of 2018 (So Far)
Top Third-Party Breaches of 2018 (So Far)
We’re only halfway through 2018 and third-party breaches continue to dominate the headlines. It may not be surprising that third-party…
Jaz Frederick
Jun 7, 2018
Third-party Risk Management- You're Probably Doing It All Wrong!
Third-party Risk Management- You're Probably Doing It All Wrong!
Peter Prizio
Jun 5, 2018
5 Steps to Bring Threat Intelligence into Your Third-Party Risk Program
5 Steps to Bring Threat Intelligence into Your Third-Party Risk Program
Threat Intelligence is all the rage, but to actually (and effectively) integrate it into our third-party risk program we need understanding…
CyberGRX
Jun 5, 2018
About The Risk Exchange
Latest Stories
Archive
About Medium
Terms
Privacy
Teams