CISO Dave Stapleton, CISO of CyberGRX, discusses vendor risk management challenges at RSA Conference 2022. A “true” third-party risk exchange is based on a standardized set of data, he says. “It doesn’t matter if you’re evaluating 50 or 3,000 vendors, it will be a standardized data set that empowers the ability to do a lot of proprietary analytics that can expose actionable insights,” he says in a video interview with Information Security Media Group.”]
Source: https://www.cuinfosecurity.com/power-true-third-party-risk-exchange-a-19279