|
By Leah Sadoian
Third-party data breaches are growing in prominence across the healthcare sector. In 2022, 55% of healthcare organizations suffered a third-party data breach, exposing the personal healthcare data of millions of individuals to malicious actors. To combat this, healthcare organizations must implement third-party risk management strategies as part of HIPAA requirements to protect patient data and prevent these devastating data breaches.
|
By Edward Kost
You understand the importance of a Vendor Risk Management strategy in mitigating the impact of third-party data breaches. However, you’re still unsure about its application to different vendor cyber risk contexts. To help you bridge this application gap and leverage the complete benefits of a Vendor Risk Management process, this post outlines three common examples of vendor security risks and how a VRM program could be tailored to address them. Learn how UpGuard streamlines Vendor Risk Management >
|
By Edward Kost
Vendor Risk Assessment processes form the core of a Vendor Risk Management program. As such, the efficiency of a VRM program is ultimately dependent on the design of its risk assessment processes. This post guides you through the design of an efficient vendor risk assessment framework in six steps. By implementing this framework, you can establish an efficient risk assessment workflow built upon a scalable process foundation. Learn how UpGuard streamlines vendor risk assessments >
|
By Edward Kost
If you’re new to vendor risk assessments, this article includes a real-life example of service provider risk assessment, helping you understand their structure and the details they entail. Learn how UpGuard streamlines vendor risk assessments >
|
By Kyle Chin
Election security is one of the most important parts of an election in order to preserve voter safety, prevent voter fraud, and, ultimately, build public trust in the electoral process. Because of the many external pieces that must come together during the election process, election organizers must use and implement effective Third-Party Risk Management (TPRM) as part of their security strategy.
|
By Leah Sadoian
Higher education institutions are a growing target for cybercriminals due to the high volume of sensitive information and data they collect and use. From enrollment to matriculation, colleges and universities utilize student data for everything from financial aid packages to determining eligibility for coursework. According to a report by Check Point Research, the education sector (specifically higher education) has experienced significantly more cyber attacks than any other industry in recent years.
|
By Leah Sadoian
The EU Cyber Diplomacy Toolbox is a framework developed by the European Union to enhance its ability to prevent, deter, and respond to malicious cyber activities that may threaten its external security. The European Commission adopted the Toolbox in 2017 as part of the EU's broader strategy to promote a global, open, stable, and secure cyberspace.
|
By Nicholas Sollitto
The Utah State government passed the Utah Consumer Privacy Act (UCPA) in March 2022, scheduling the law to go into effect on December 31, 2023. Utah is the fourth state in the United States to pass a state privacy law. Compared to preceding US privacy laws, such as the California Consumer Privacy Act (CCPA), Virginia Consumer Data Protection Act (VCDPA), and Colorado Privacy Act (CPA), the UCPA has a narrower scope, making the law more friendly to businesses and data controllers.
|
By Edward Kost
There’s one major between organizations that fall victim to a data breach and those that don’t - attack surface awareness. Even between those who have implemented an attack surface management solution and those who haven’t, the more successful the cybersecurity programs more likely to defend against a greater scope of cyber threats are those with greater attack surface visibility.
|
By Leah Sadoian
In January 2023, the European Commission (EC) released an updated version of the European Union (EU) Network and Information Security Directive (NIS2) to strengthen cybersecurity risk management across Europe’s essential services. NIS2 updates the original NIS directive and focuses more on regulations for cloud infrastructure, internet exchanges, domain service providers, and digital service providers.
|
By UpGuard
Join Jess Hooper, our Senior Product Manager, as she outlines how UpGuard is launching a suite of new features that together represent the next step in the evolution of trust management.
|
By UpGuard
Join Aaron Spiteri, Our Director of Third-Party Risk Management Services, as he outlines how UpGuard is reimagining our vendor risk assessment service from the ground up.
|
By UpGuard
Learn from Neil Cameron of Peoplecare, Shahn Harris of Air New Zealand, and Andrew Bullen of St John Ambulance Group as they share how they’ve scaled their TPRM program.
|
By UpGuard
Join our CISO, Phil Ross, and Head of Talent Acquisition, Ian Chaplin, as they discuss the evolution of the cybersecurity professional and share actionable insights on how to hire the right talent today.
|
By UpGuard
Join UpGuard's Chief Product Officer, Dan Bradbury, as he shines a spotlight on all of the groundbreaking product releases from the last quarter and the exciting releases coming soon.
|
By UpGuard
Join UpGuard's Chief Product Officer, Dan Bradbury, as he shines a spotlight on all of the groundbreaking product releases from the last quarter and the exciting releases coming soon.
|
By UpGuard
Join Greg Pollock, our VP of BreachSight, as he talks about the most prolific ransomware group, Lockbit, and how to keep yourself secure from ransomware attacks.
|
By UpGuard
Join Lisa Baldacchino, Senior Product Manager, as she shows how UpGuard can be leveraged for the long-term tracking and management of your third-party risks.
|
By UpGuard
Join Kurt Brown, our VP of Product, as he delves into UpGuard's strategic approach to integrations.
|
By UpGuard
You understand the risks that third party vendors pose to your business, and you're ready to do something about it. What are the capabilities you need to understand your cyber risk, manage your vendors, and avoid data breaches?
|
By UpGuard
Perhaps your organization is looking to make a transition from traditional IT operations and development practices to DevOps, or you're looking to realign your career path with DevOps to position yourself more favorably to future opportunities. Whatever your motivations are, this eBook will provide you with foundation knowledge for boosting your career with DevOps.
|
By UpGuard
The fact that one has to "make a case" for Microsoft in the DevOps sphere puts them at a disadvantage, especially competing against major open source options with large community bases and proven performance. But, moving forward, one can expect the gap between Microsoft and other tools to close further, as they continue pressing their business in this direction.
|
By UpGuard
Cybersecurity is officially dead. Worldwide spending on security-related hardware, software and services rose to $73.7 billion in 2016 from $68.2 billion a year earlier, according to researcher IDC. This number is expected to approach $90 billion in 2018.
|
By UpGuard
ServiceNow® customers optimizing their IT service delivery and management processes require deeper context and detail level behind IT asset changes--information the leading help desk automation and incident reporting platform does not provide. In this report you'll learn how UpGuard fills this visibility and awareness gap, keeping ServiceNow® in line with the true state of your environment.
|
By UpGuard
DevOps and ITIL should be compared with an eye towards the problem you're trying to solve, with a focus on the tangible benefits you and your team would see from using each.
|
By UpGuard
Selecting a security provider is no easy feat-it includes months of designing a company's security strategy, evaluating different solutions, budgeting accordingly, and assuring stakeholders the investment will pay off by keeping their business safe.
|
By UpGuard
With the enterprise so dependent on technology and digitized assets, how can it prevent data-related disasters from sinking the business? The answer is by taking a new approach to managing cyber risk as a function of business risk at large. McKinsey calls this "Digital Resilience", but it can simply be thought of as conducting business safely in today's connected environments.
|
By UpGuard
Software engineering is changing and DevOps is at the heart of it. An organization's ability to be responsive to the business requires better collaboration, communication, and integration across IT.
|
By UpGuard
There is no doubt that the DevOps movement has gone mainstream. When even IBM and HP are dedicating sites to it there is no longer any question. If we were to place it on the Gartner Hype Cycle even the most devoted proponents would have to admit that it's rapidly approaching the "Peak of Inflated Expectations".
- May 2024 (8)
- April 2024 (28)
- March 2024 (24)
- February 2024 (11)
- January 2024 (23)
- December 2023 (22)
- November 2023 (13)
- October 2023 (25)
- September 2023 (28)
- August 2023 (38)
- July 2023 (24)
- June 2023 (19)
- May 2023 (17)
- April 2023 (18)
- March 2023 (15)
- February 2023 (15)
- January 2023 (9)
- December 2022 (7)
- November 2022 (23)
- October 2022 (13)
- September 2022 (28)
- August 2022 (32)
- July 2022 (6)
- June 2022 (21)
- May 2022 (20)
- April 2022 (16)
- March 2022 (15)
- February 2022 (8)
- January 2022 (12)
- December 2021 (16)
- November 2021 (11)
- October 2021 (9)
- September 2021 (12)
- August 2021 (13)
- July 2021 (6)
- June 2021 (4)
- May 2021 (14)
- April 2021 (7)
- March 2021 (11)
- February 2021 (10)
- January 2021 (4)
- December 2020 (15)
- November 2020 (7)
- October 2020 (17)
- August 2020 (9)
- July 2020 (2)
- June 2020 (8)
- May 2020 (12)
- April 2020 (17)
- March 2020 (19)
- February 2020 (15)
- January 2020 (15)
- December 2019 (10)
- November 2019 (13)
- October 2019 (14)
- September 2019 (10)
- August 2019 (10)
- July 2019 (2)
- June 2019 (1)
- May 2019 (2)
- March 2019 (1)
- November 2018 (4)
- October 2018 (1)
- September 2018 (12)
- August 2018 (2)
- July 2018 (3)
- June 2018 (2)
- May 2018 (5)
- April 2018 (6)
- March 2018 (1)
- February 2018 (1)
- January 2018 (1)
- December 2017 (1)
- November 2017 (1)
A better, smarter way to protect your data and prevent breaches. Our products help security, risk and vendor management teams take control of cyber risk and move faster with confidence.
UpGuard gathers complete information across every digital surface, stores it in a single, searchable repository, and provides continuous validation and insightful visualizations so companies can make informed decisions.
UpGuard then aggregates this information into an industry standard cyber risk score called CSTAR. The CSTAR score is a single, easy-to-understand value representing an organization's aptitude in monitoring compliance, tracking unwanted change, and detecting vulnerabilities in their infrastructure.
Businesses depend on trust, but breaches and outages erode that trust. UpGuard is the world’s first cyber resilience platform, designed to proactively assess and manage the business risks posed by technology.