Black Kite Blog
How to Prioritize Security When Executives Are Focused on Business Growth
Labeling risk takes a back seat to properly addressing the risk itself, let's explore the nuances of what third party risk really is.
Sep 29, 2022Do Grc Requirements Truly Reduce Risk?
When GRC requirements tend to be more compliance based, rather than risk reduction forward, what actions can you take to facilitate better risk management?
Sep 9, 2022Ciso on the Road with Bob Maley
At each CISO Exec Net, CISOs from different companies meet up and discuss the most pressing and top-of-mind topics together.
Aug 3, 2022Cybersecurity Rating Vs. Penetration Testing (pen Test)
IT leaders are responsible for keeping digital and informational assets safe and secure. Protecting employees and client data should be a priority.
Jul 22, 2022Expert Insights: U.s. Federal Government Risk in 2022
Hear from our experts as they discuss the government’s role in centralizing supply chain cybersecurity and what the future holds for federal cyber regulations a...
Jul 21, 2022Spotlight on the Gramm-leach-bliley Act (glba)
Spotlight on the Gramm-Leach-Bliley Act (GLBA) - Third Party Risk Management Articles and Education from Shared Assessments
Jul 19, 2022Defend Cybersecurity Investment Amidst an Economic Downturn
In economic downturns, defending investment is imperative for remaining cyber secure and prioritizing risk level maintenance. Discover how.
Jul 14, 20222022 Key Third-party Breaches: Healthcare Still at Major Risk
Let’s take a moment to look back, reflect, and learn from some of the key third-party breaches of 2022 where healthcare continued to be a top target.
Jul 11, 2022Have You Built a Password Fortress? – Risky Passwords of 2022
Each year, password lists are published by various companies looking to highlight the frequent, weak passwords of the last 12 months. Is yours on the list?
Jul 6, 2022Due Diligence 5-step Checklist
Third-party due diligence in 5 steps: a working checklist from Black Kite Research covering scoping, evidence, scoring, sign-off, and continuous review.
Jun 28, 2022What Should Cyber Security’s Role in Sourcing and Procurement Be?
When SPVM teams and security teams work together when assessing vendors, risk is properly accounted for and all parties involved are informed.
Jun 15, 2022Prioritizing Third Party Risk Intelligence in a Managed Services Package
Modern cybersecurity programs are complex and MSSPs must include a third-party risk intelligence solution in their service offering.
Jun 3, 2022