While there is much discussion about the data security and privacy risks created by third parties, another source of risk can be significant but overlooked: that from fourth parties – those vendors that your vendors use – who may be integral players in your mission fulfillment but who are beyond your direct contractual oversight.
Because third parties often touch customer systems and exchange data with customer staff, they introduce additional layers of cyber risk. Companies do have some safeguards in contractually imposing responsible behaviors and penalties for non-compliance, and monitoring document exchange as much as possible. Fourth parties, however, may provide a critical service but in turn extend your risk surface in ways you hadn’t understood, or, lacking a direct relationship, can’t really attempt to control.
Perimeter security typically does a v ..
Support the originator by clicking the read the rest link below.
