Due Diligence and Ongoing Monitoring

 View Only
  • 1.  Cyber Security Monitoring Companies

    Posted 01-11-2021 11:46 AM
    We are looking into three different monitoring companies:
    • RiskRecon
    • Supply Wisdom
    • SecurityScorecard
    Would anyone be willing to share their opinions on any of these?  Does anyone currently use any one of these and do you find their reports on third parties worth the investment?  All have the ability to select how often and to what degree of monitoring is done.  At a per third party monitored cost structure, we are not able to monitor all of ours as the cost can be quite high based on the monitoring and frequency done.  We are looking at monitoring our high risk third party administrators and companies who handle our data. 

    I am looking forward to your feedback and advice.

    Thank you,
    Jeff


  • 2.  RE: Cyber Security Monitoring Companies

    Posted 01-11-2021 12:33 PM
    Our company evaluated SecurityScorecard, Bitsight and RiskRecon two years ago and selected RiskRecon. The relationship is managed by our CISO as it is primarily for critical IT vendors and to monitor our own score.

    Due to our vendor oversight and monitoring process I stumbled on ThirdPartyTrust. We are exploring their solution as it provides information from all three services and provides additional services. You may want to check them out. https://www.thirdpartytrust.com/

    Adam Wyrick, Sr. Account Executive / Channel Manager
    Direct: ***number removed for privacy purposes***
    www.thirdpartytrust.com