Changing the TPCRM Game W/ Cyber Risk Intelligence Tools – Vikram Asnani – ESW #261
Definitions of the word intelligence include a collection of information of military or
political value as well as the ability to acquire and apply knowledge or skills. In
cybersecurity, when we possess intelligence, we feed that data in our Security
Operations Center (SOC) to further analyze the risk present. In this case, the risk is based on the probability of threats materializing and the impact they would have on the organization.
We’re calling the output of that SOC Cyber Risk Intelligence. Cyber Risk Intelligence is
the ability to think holistically about risk and provide information that decision makers
can act on...not just analyze.
Traditional Vendor Risk Management (VRM) processes focus on the gap, which is essentially information that needs to be further analyzed against the risk to the business. This is an additional step that takes time and effort, especially when different compliance frameworks and threats are constantly emerging.
This segment is sponsored by CyberGRX.
Visit https://securityweekly.com/cybergrx to learn more about them!
Do you have a specific guest or topic that you want us to cover on one of the shows? Submit your suggestions for guests by visiting https://securityweekly.com/guests and completing the form! We review suggestions monthly and will reach out to you once reviewed!
Vikram is a CISSP and SABSA certified cybersecurity and privacy professional with 15 years of global experience in assisting clients across Risk Management, CyberSecurity Strategy, Third Party Risk, Cloud Migration, Business Continuity and Data Privacy, through Advisory and Managed Services offerings with a motto of using technology as an innovative solution for driving maturity. Vikram has worked with many assurance functions, risk managers as part of his experience of working with Big4 consultancy companies. He also has experience of leading a national practice for third party risk management, where he has built end to end TPRM programs including establishing governance and assurance functions. Vikram is currently a solution architect for a CyberGRX, which has revolutionized the way to manage TPRM program and has been assisting its clients in maturing their TPRM program using CyberGRX.