Top 5 IT Risk Management Resolutions For 2014
The coming year may be the perfect time to re-examine IT risk management priorities.
Resolution #1: Improving Third-Party Risk Management
As news of more breaches and security incidents caused by third-parties make the news, enterprises and regulatory bodies alike are sharpening their focus on risks posed by vendors and partners entrusted with their data. According Andrew Wild, CSO of Qualys, he expects third-party risk management to be a key area of focus for IT risk professionals this year.
"The growing reliance upon third parties requires a mature third party risk management program to ensure risks are properly identified, assessed and managed," Wild says, pointing to new regulatory requirements such as the guidance issued for banking institutions by the U.S. Office of the Comptroller of the Currency. "However, even organizations with no regulatory or compliance program requirements for third party risk management face increased scrutiny from customers about third party risk management." Read full story on Dark Reading
Post a comment to the original version of this story on Dark Reading