Enterprise Security Weekly Subscribe

Vulnerability Management, Threat Management

Changing the TPCRM Game W/ Cyber Risk Intelligence Tools – Vikram Asnani – ESW #261

February 17, 2022

Definitions of the word intelligence include a collection of information of military or political value as well as the ability to acquire and apply knowledge or skills. In cybersecurity, when we possess intelligence, we feed that data in our Security Operations Center (SOC) to further analyze the risk present. In this case, the risk is based on the probability of threats materializing and the impact they would have on the organization.

We’re calling the output of that SOC Cyber Risk Intelligence. Cyber Risk Intelligence is the ability to think holistically about risk and provide information that decision makers can act on...not just analyze.

Traditional Vendor Risk Management (VRM) processes focus on the gap, which is essentially information that needs to be further analyzed against the risk to the business. This is an additional step that takes time and effort, especially when different compliance frameworks and threats are constantly emerging.

Segment Resources: https://www.cybergrx.com/resources/research-and-insights/blog/beyond-risk-management-how-cyber-risk-intelligence-tools-are-changing-the-tpcrm-game

This segment is sponsored by CyberGRX.

Visit https://securityweekly.com/cybergrx to learn more about them!

Full episode and show notes

Announcements

We're always looking for great guests for all of the Security Weekly shows! Submit your suggestions by visiting https://securityweekly.com/guests and completing the form!

Guest

Vikram Asnani

Sr Director Solution Architecture at CyberGRX

Vikram is a CISSP and SABSA certified cybersecurity and privacy professional with 15 years of global experience in assisting clients across Risk Management, CyberSecurity Strategy, Third Party Risk, Cloud Migration, Business Continuity and Data Privacy, through Advisory and Managed Services offerings with a motto of using technology as an innovative solution for driving maturity. Vikram has worked with many assurance functions, risk managers as part of his experience of working with Big4 consultancy companies. He also has experience of leading a national practice for third party risk management, where he has built end to end TPRM programs including establishing governance and assurance functions. Vikram is currently a solution architect for a CyberGRX, which has revolutionized the way to manage TPRM program and has been assisting its clients in maturing their TPRM program using CyberGRX.

Hosts

Adrian Sanabria

Principal Researcher at The Defenders Initiative

https://adriansanabria.com

Katie Teitler-Santullo

Product Marketer and Content Strategist

VP Traceable.ai, Cyber Angel Investor and Advisor at 90 Degree Ventures

https://www.90degree.vc/

Related

Vulnerability Management

Win 95, LastPass, Kubernetes, Sandworm, Bloomtech, Frontier, 911, Aaran Leyland… – SWN #379

April 19, 2024

Win 95, Cheat Lab, LastPass, Kubernetes, Sandworm, Bloomtech, Frontier, 911, Aaran Leyland, and More, on this edition of the Security Weekly News.

Vulnerability Management

Duo, Steganography, Roku, Palo Alto, Putty, Cerebral, IPOs, SanDisk, & Josh Marpet – SWN #378

April 16, 2024

Duo, Steganography, Roku, Palo Alto, Putty, Cerebral, IPOs, SanDisk, Josh Marpet, and more, on this Edition of the Security Weekly News.

Vulnerability Management

Combadges, SISENSE, Microsoft, CISA, Lastpass, Palo Alto, Broadband, Aaran and More – SWN #377

April 12, 2024

Combadges, SISENSE, Microsoft, Malware Next-Gen, Lastpass, Palo Alto, Broadband, Aaran Leyland, and More, on this edition of the Security Weekly News.