Understanding third party risk by studying third party breaches

On-Demand Webcast|1 hour

There is often no better teacher than failure. Instead of waiting to learn from your own failures, why not learn from others? Find out what third party breaches can teach us about third party risk and vendor due diligence! This webcast with Bill Brenner and Enterprise Security Weekly host Adrian Sanabria will walk through:

  • Improving the vendor due diligence process by focusing on outcomes and exploring automation opportunities
  • Evaluating products
  • How to secure third-party software and prepare for the risks they create
  • Real-world breach examples and what they can teach us


Adrian Sanabria
Director of Research
The Defenders Initiative

Adrian joined SC Media’s parent company, CyberRisk Alliance in 2020. He will focus primarily on cybersecurity product reviews, but will also provide industry insight trends for both SC Media and Security Weekly (another CyberRisk Alliance company). He brings two decades of industry experience, working as a practitioner, penetration tester, and industry analyst. He spent the last few years as an entrepreneur, challenging norms in sales and marketing for a variety of vendors. Adrian loves to cook, eat, hike, play music and regale his teenagers with stories of what the early days of the Internet were like.

Bill Brenner
VP, Content Strategy
CyberRisk Alliance

Bill Brenner is VP of Content Strategy at CyberRisk Alliance — an InfoSec content strategist, researcher, director, tech writer, blogger and community builder. He was formerly director of research at IANS, senior writer/content strategist at Sophos, senior tech writer for Akamai Technology’s Security Intelligence Research Team (Akamai SIRT), managing editor for CSOonline.com and senior writer for SearchSecurity.com.

David Stapleton
ProcessUnity CISO

David Stapleton is a tenured cybersecurity risk professional with experience in both the public and private sectors. He began his cyber career at the Department of Health and Human Services (HHS) where he developed and managed Risk & Compliance functions for the Food and Drug Administration (FDA) and Indian Health Service (IHS). David currently serves as VP and Chief Information Security Officer at CyberGRX where he leads the security operations team. David is a Certified Information Systems Security Professional (CISSP).