%term

Third-party risk management: What's next | TrustTalks - Ep 35 | Security and GRC Podcast

Jul 20, 2025 By TrustCloud In TrustCloud

Akshay sits down with Paola to discuss Third-party risk management. Third-party risk isn’t just a security checkbox anymore, it’s becoming one of the most dynamic and high-stakes areas of enterprise risk. In this episode, we unpack where third-party risk management is headed: from static spreadsheets to real-time monitoring, from annual audits to AI-driven insights, and from compliance pressure to competitive advantage.

View Video

TrustCloud

Read more about Third-party risk management: What's next | TrustTalks - Ep 35 | Security and GRC Podcast

Third-party risk management: Trends, tech, and what's next

Jul 20, 2025 By Paola Diaz In TrustCloud

In this article There’s a silent shift happening in boardrooms, risk teams, and procurement departments across counters, and it’s reshaping how companies think about their vendors. Third-party risk used to be a compliance afterthought, reduced to a stack of spreadsheets and annual checklists. But not anymore.

Read Post

TrustCloud

Read more about Third-party risk management: Trends, tech, and what's next

How NIST, EO 14028, and CRA Are Shaping IoT Cybersecurity Compliance

Jul 20, 2025 By Louise José In Device Authority

In 2025, the regulatory environment for connected devices is shifting rapidly, with the regulatory landscape evolving due to new policies like the EU NIS2 Directive and related frameworks. As the risk of cyberattacks on critical infrastructure and IoT ecosystems increases, organizations face significant security challenges in this evolving environment.

Read Post

Device Authority

Read more about How NIST, EO 14028, and CRA Are Shaping IoT Cybersecurity Compliance

CPS 234 vs. ISO 27001: Differences and overlaps

Jul 18, 2025 By Vanta In Vanta

CPS 234 and ISO 27001 are two industry-accepted standards that help protect organisations from cyber attacks—one of the biggest threats and concerns Australian organisations experienced in 2024. The standards can be said to share the same end goal—increasing cyber resilience while helping manage information security more effectively. ‍ Despite this shared goal, CPS 234 and ISO 27001 come with notable differences.

Read Post

Vanta

Read more about CPS 234 vs. ISO 27001: Differences and overlaps

FedRAMP vs StateRAMP Cost Comparison Guide

Jul 18, 2025 By Dan Page In Ignyte

Cloud service providers looking to work with the government, whether it’s at the state and local level or at the federal level, will have to adhere to certain cybersecurity standards. At the federal level, the program is called FedRAMP: the Federal Risk and Authorization Management Program.

Read Post

Ignyte

Read more about FedRAMP vs StateRAMP Cost Comparison Guide

Vanta Acquires Riskey to Transform Vendor Risk with Continuous, AI-Powered Monitoring

Jul 17, 2025 By Vanta In Vanta

Vanta announces the acquisition of Riskey, a pioneer in real-time third- and fourth-party risk monitoring. The addition of Riskey's technology into Vanta Vendor Risk Management (VRM) significantly advances Vanta's capabilities in supporting security teams with an automated approach to VRM - replacing static point-in-time assessments with continuous, AI-driven risk intelligence.

Read Post

Vanta

Read more about Vanta Acquires Riskey to Transform Vendor Risk with Continuous, AI-Powered Monitoring

Ensuring Compliance with DORA: How Trustwave Secures Your Databases and Meets Regulatory Standards

Jul 17, 2025 By Montserrat Bonilla In Trustwave

The EU’s Digital Operational Resilience Act (DORA) establishes a unified regulatory framework to ensure financial institutions can withstand and recover from IT disruptions. As a cornerstone of operational resilience, secure and compliant database environments are critical to safeguarding sensitive financial data and maintaining regulatory alignment.

Read Post

Trustwave

Read more about Ensuring Compliance with DORA: How Trustwave Secures Your Databases and Meets Regulatory Standards

Supercharging Vendor Risk Management: Vanta acquires Riskey

Jul 17, 2025 By Vanta In Vanta

Today, we're taking a big step toward making trust management even easier for our customers: Vanta has acquired Riskey, a company leading the way in real-time third-party risk monitoring. Their continuous vendor monitoring and alerting will soon be part of Vanta’s Vendor Risk Management product. ‍ Managing vendor risk is more important than ever.

Read Post

Vanta

Read more about Supercharging Vendor Risk Management: Vanta acquires Riskey

Government Contractor's Guide to Achieving Project Management Excellence

Jul 17, 2025 By NeoSystems Corp In NeoSystems

View Video

NeoSystems

Read more about Government Contractor's Guide to Achieving Project Management Excellence

Understanding AI compliance and its importance for organizations

Jul 16, 2025 By Vanta In Vanta

As AI capabilities grow, organizations are adopting it for compliance monitoring, risk analysis, and data processing. However, increased use also introduces new risks, making strict regulation essential, especially in sectors where sensitive data is involved—like finance, insurance, and healthcare. Mishandling this information can lead to reputational damage, legal action, or hefty fines.

Read Post