Source: Security Magazine
5 minutes with Tony Howlett – Vendor risk management needs to be a top security priority in 2021 and beyond
The recent SolarWinds breach has brought vendor risk management into the spotlight, but not an isolated example (other major third-party breaches include Target in 2013, JP Morgan Chase in 2014, T-Mobile in 2015… the list goes on). With 59% of data breaches being traced to third-party vendors and the average enterprise having 67 vendors with privileged access, managing third party risk is no longer optional, says Tony Howlett, Chief Information Security Officer (CISO) of SecureLink. Here, we speak to Howlett about why security and risk professionals need to take control of their third-party exposure and implement safeguards and processes to reduce their vulnerability.