Cybersecurity and Third-Party Risk: Third Party Threat Hunting
by： Gregory C. Rasner
Publisher Finelybook 出版社：Wiley; 1st edition (July 2, 2021)
pages 页数：480 pages
STRENGTHEN THE WEAKEST LINKS IN YOUR CYBERSECURITY CHAIN
Across the world, the networks of hundreds of different world-class organizations have been breached in a seemingly never-ending stream of attacks that targeted the trusted vendors of major brands. From Target to Equifax, Home Depot, and GM, it seems as if no company is safe from a third-party incident or breach, regardless of size. And the advanced threats are now exploiting the intersection of weaknesses in cybersecurity and third-party risk management.
In Cybersecurity and Third-Party Risk, veteran cybersecurity specialist Gregory Rasner walks readers through how to lock down the vulnerabilities posed to an organization’s network by： third parties. You’ll discover how to move beyond a simple checklist and create an active, effective, and continuous system of third-party cybersecurity risk mitigation.
The author discusses how to conduct due diligence on the third parties connected to your company’s networks and how to keep your information about them current and reliable. You’ll learn about the language you need to look for in a third-party data contract whether you’re offshoring or outsourcing data security arrangements.
Perfect for professionals and executives responsible for securing their organizations’ systems against external threats, Cybersecurity and Third-Party Risk is an indispensable resource for all business leaders who seek to:
Understand the fundamentals of third-party risk management
Conduct robust intake and ongoing due diligence
Perform on-site due diligence and close vendor risks
Secure your software supply chain
Utilize cloud and on-premises software securely
Continuously monitor your third-party vendors and prevent breaches