Ratings' Role in Vendor Risk ManagementSecurityScorecard's Sam Kassoumeh on How to Improve Vendor Assessments and Results
From GDPR to the NIST Cybersecurity Framework, vendor risk management is a key component of every new piece of cybersecurity guidance. Yet, security leaders still struggle to inventory and assess their strategic partners. Sam Kassoumeh of SecurityScorecard explores the challenges.
In an interview at Information Security Media Group's recent Healthcare Security Summit in New York, Kassoumeh discusses:
- Why organizations struggle with vendor risk management;
- How cloud computing only increases the complexity of the challenge;
- The role vendor ratings and ongoing assessment can play in a vendor risk strategy.
Kassoumeh is the COO and co-founder of SecurityScorecard. Previously, he was head of security and compliance at Gilt and led global security at Federal-Mogul.