Security News > 2021 > January > The aftermath of the SolarWinds breach: Organizations need to be more vigilant
Security experts say organizations are, and should, implement a number of changes ranging from how they vet vendors to handling application updates.
The way Nick Fuchs sees it, in the aftermath of the massive SolarWinds breach, there has been one silver lining: A greater understanding of the important role security needs to play in any organization.
Fuchs and others said the breach is prompting organizations to rethink how they vet vendors and handle application updates.
One significant change is that organizations are rethinking vendor risk management requirements, he said.
"Some organizations do nothing in this area and some ask vendors to fill in some type of security questionnaire. Now, organizations are considering much deeper cyber supply chain security."
Does the vendor have internal security policies and controls that are equal to or stronger than that of Springfield Clinic's? Also, can the vendor provide evidence that they are actually following them?