How concerned are you about effects of an attack on your supply chain?

Security & GRCThreat & Vulnerability Management

Very concerned40%

Somewhat concerned49%

Not concerned10%

792 PARTICIPANTS
4.6k viewscircle icon1 Upvotecircle icon2 Comments
Sort by:
Director of Enablement2 years ago

There’s been a substantial rise in supply chain attacks recently, especially through compromise of third party vendors (which inevitably lead to data exfiltration, encryption or extortion)

It’s imperative that you assess and validate every vendor in your chain, and understand all of the data processing (and storage) of each vendor in the pipeline.

If possible, look to minimise the risk by minimising vendors!

CISO in Software4 years ago

Started looking at StepSecurity. https://github.com/apps/step-security

Lightbulb on2

Content you might like

How are you currently managing SIEM costs? Have you found effective ways to actually reduce storage costs for your SIEM?

What is your preference when choosing a DDoS mitigation service?

Always-on service32%

On-demand service – traffic is scrubbed only when an attack is detected and mitigated66%

One time use – service is activated upon request1%

View Results

What is the most effective frequency for 1-on-1 meetings with direct reports?

Once a week37%

Once every 2 weeks43%

Once a month13%

Adhoc4%

What 1-on-1?1%

View Results

How can the risk management function be strengthened to counterbalance overly aggressive executive decisions?

Read More Comments

Apart from applying the patches just released, what other mitigation tactics are you using to address the zero-day SharePoint vulnerabilities impacting on-premises servers?

How concerned are you about effects of an attack on your supply chain? | Gartner Peer Community