Have you experienced any significant security breaches or data incidents involving your software vendors?

Data Privacy & ProtectionThird Party Risk Management (TPRM)

Yes, multiple times45%

Once40%

No15%

102 PARTICIPANTS
543 viewscircle icon1 Comment
Sort by:
Director in Manufacturing2 years ago

If you ever used EXCHANGE, the answer should be yes   or other Microsoft products.

Content you might like

Do you use standardized frameworks to define metrics for TPRM (third party risk management) or have you developed custom benchmarks?

We use standardized frameworks (e.g., NIST, ISO) 50%

We developed custom benchmarks 39%

We use a mix of framework-defined metrics and custom benchmarks 6%

Unsure/other6%

View Results

Do you use an ERM-system that also includes cyber security risk management? What tools or systems do you use?

Read More Comments

For European companies with DORA requirements – DORA expects to have in place exit strategies for critical IT providers, and internal IT providers. How are you handling exit strategies for internal IT providers (especially when they're set up as separate legal entities within your group)? More importantly, has anyone actually conducted the required exit strategy tests for internal providers, and if so, how did you approach it?

How many 3rd-party scripts does your website load into web visitors' browsers before they accept or decline your organization's privacy consent notice?

None13%

1-536%

6-1022%

11-2017%

21-492%

50+1%

I don't know6%

View Results

What’s your “hot take” when it comes to security questionnaires?

Read More Comments