SANS What Works in the Third-Party Risk Assessment: Using BitSight for Continuous Monitoring

SANS What Works in the Third-Party Risk Assessment: Using BitSight for Continuous Monitoring

Forrester
Published by: Research Desk Released: Jan 15, 2019

Assessing and monitoring the security of third-party vendors and business
partners has become even more important as threat actors focus on and
exploit those connections. The Third-Party Risk Assessment Program Manager
at KPMG found that using BitSight Security Ratings enabled him to continuously
monitor the security posture of critical vendors, and facilitate more effective
collaboration on risk reduction based on BitSight’s proposed remediation plans.