Jake Kouns, Risk Based Security, RVAsec, CISO and Co-Founder
To Be Thorough, Include Vendor Security Metrics
- With companies depending more and more on outsourced software products, cloud-based services, and partner relationships, those connections become potential vulnerabilities.
- CEOs need to understand vendor and product risks from a business decision-making perspective.
“Many people say, ‘Our front door is locked and now we’re safe.’ I say to them, ‘But what about all your vendors?”
Jake Kouns believes that there’s a different kind of security metric executives should look at more closely. Most medium sized and large organizations focus on securing their infrastructure. They have a solid foundation for measuring and understanding their security posture. “I think many people say, ‘Our front door is locked and now we’re safe.’ I say to them, ‘But what about all your vendors?’”
This is an excerpt from Using Security Metrics to Drive Action. The eBook was generously sponsored by Tenable.
