To Be Thorough, Include Vendor Security Metrics
- With companies depending more and more on outsourced software products, cloud-based services, and partner relationships, those connections become potential vulnerabilities.
- CEOs need to understand vendor and product risks from a business decision-making perspective.
“Many people say, ‘Our front door is locked and now we’re safe.’ I say to them, ‘But what about all your vendors?”
Jake Kouns believes that there’s a different kind of security metric executives should look at more closely. Most medium sized and large organizations focus on securing their infrastructure. They have a solid foundation for measuring and understanding their security posture. “I think many people say, ‘Our front door is locked and now we’re safe.’ I say to them, ‘But what about all your vendors?’”