3rd Party Risk Management

Ratings' Role in Vendor Risk Management

SecurityScorecard's Sam Kassoumeh on How to Improve Vendor Assessments and Results Tom Field (SecurityEditor) • November 29, 2017

Ratings' Role in Vendor Risk Management

Sam Kassoumeh, COO and co-founder, SecurityScorecard

From GDPR to the NIST Cybersecurity Framework, vendor risk management is a key component of every new piece of cybersecurity guidance. Yet, security leaders still struggle to inventory and assess their strategic partners. Sam Kassoumeh of SecurityScorecard explores the challenges.

See Also: How to Reduce Compliance and Risk Workload to Increase Cybersecurity Revenue for Managed Security Service Providers (MSSPs)

In an interview at Information Security Media Group's recent Healthcare Security Summit in New York, Kassoumeh discusses:

Why organizations struggle with vendor risk management;
How cloud computing only increases the complexity of the challenge;
The role vendor ratings and ongoing assessment can play in a vendor risk strategy.

Kassoumeh is the COO and co-founder of SecurityScorecard. Previously, he was head of security and compliance at Gilt and led global security at Federal-Mogul.

Previous
Canadian Hacker-for-Hire for Russia Pleads Guilty

Next
Uber's British Breach Tally: 2.7 Million Victims

About the Author

Tom Field

Tom Field

Senior Vice President, Editorial, ISMG

Field is responsible for all of ISMG's 28 global media properties and its team of journalists. He also helped to develop and lead ISMG's award-winning summit series that has brought together security practitioners and industry influencers from around the world, as well as ISMG's series of exclusive executive roundtables.

You might also be interested in …

Achieving New SEC Cybersecurity Compliance Through Proactive Risk Management

Achieving New SEC Cybersecurity Compliance Through Proactive Risk Management

Multinational Manufacturing Corporation Automates Complex Manual Processes with TruOps

Multinational Manufacturing Corporation Automates Complex Manual Processes with TruOps

Live Webinar Tomorrow | Get Your Head in the Cloud: Modern Security Challenges & Solutions

Live Webinar Tomorrow | Get Your Head in the Cloud: Modern Security Challenges & Solutions

5 Tips for Modernizing a Security Operations Center

5 Tips for Modernizing a Security Operations Center

The CISO's Response Plan After a Breach

►

The CISO's Response Plan After a Breach

Evaluating and Reducing Supply Chain Risk

►

Evaluating and Reducing Supply Chain Risk

Managed File Transfer: Move Files Efficiently and Securely

►

Managed File Transfer: Move Files Efficiently and Securely

Partnership Insecurity: Practice the Art of Diligence

►

Partnership Insecurity: Practice the Art of Diligence

Get the Risk Out! Managing Third-Party Cyber Risk Efficiently

Get the Risk Out! Managing Third-Party Cyber Risk Efficiently

Around the Network

Critical Considerations for Generative AI Use in Healthcare

Critical Considerations for Generative AI Use in Healthcare

Why Connected Devices Are Such a Risk to Outpatient Care

Why Connected Devices Are Such a Risk to Outpatient Care

Addressing Security Gaps and Risks Post-M&A in Healthcare

Addressing Security Gaps and Risks Post-M&A in Healthcare

Why OT Security Keeps Some Healthcare Leaders Up at Night

Why OT Security Keeps Some Healthcare Leaders Up at Night

Zero Trust, Auditability and Identity Governance

Zero Trust, Auditability and Identity Governance

Why Entities Should Review Their Online Tracker Use ASAP

Why Entities Should Review Their Online Tracker Use ASAP

The State of Security Leadership

The State of Security Leadership

Generative AI: Embrace It, But Put Up Guardrails

Generative AI: Embrace It, But Put Up Guardrails

Inside Look: FDA's Cyber Review Process for Medical Devices

Inside Look: FDA's Cyber Review Process for Medical Devices

Threat Modeling Essentials for Generative AI in Healthcare

Threat Modeling Essentials for Generative AI in Healthcare

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing inforisktoday.com, you agree to our use of cookies.