14 Top Cybersecurity Trends To Expect At Black Hat Conference
As Black Hat Conference 2021 kicks off amid vendor cancellations and a surge in COVID-19 cases in Las Vegas, CRN speaks with 14 prominent executives to see what cybersecurity trends they expect to be the talk of this year’s event.
Third-Party Risk Management
Organizations are increasingly realizing that they need to invest more resources in ensuring that third-party vendors aren’t a source of endangerment, according to Colin Henderson, OneTrust’s vice president of security. Large multinational firms have been assessing third-party risk in a programmatic, mature way for some time, but smaller players that outsource their IT management need to take a closer look.
Organizations should start by reviewing vendor contracts to ensure their suppliers have the right people, controls and governance structure in place to address cyber-risk in a serious manner, Henderson said. Businesses should be able to audit their most significant third-party vendors, and Henderson said visibility is key when assessing whether or not the appropriate security policies are in place.
Companies should apply the most scrutiny to third parties that post the highest risk such as ones with direct access to the organization’s data, ensuring that they’re evaluated with the appropriate frequency and depth, Henderson said. And if a vendor doesn’t have a good risk management program, Henderson said the business should consider alternate options.