What businesses need to know to evaluate partner cyber resilience

2021-03-24 06:00

Many recent high-profile breaches have underscored two important cybersecurity lessons: the need for increased scrutiny in evaluating access and controls of partners handling valuable customer data, and the imperativeness of assessing a third party's approach to cyber resilience.

Recently, the Cybersecurity and Infrastructure Security Agency included security ratings or scorings as part of its cyber risk reduction initiative.

In the meantime, here are four questions businesses should ask when determining a partner's cyber resilience to reduce the possible risks that come with giving external parties access to sensitive data.

Businesses must have endpoint security in place as cybercriminals are constantly developing new ways to attack networks, take advantage of employee trust and steal data.

In addition to standardization of security policies, a cyber resilient partner will take necessary measures to educate their staff about the latest cyber threats and institute security training and awareness programs across all levels of their organization.

In partnership conversations, have an open discussion with the potential partner to find out if a breach were to occur, would your company be able to obtain access to their security audit logs.

News URL

http://feedproxy.google.com/~r/HelpNetSecurity/~3/2i--gZq4MDc/