Are you reevaluating your software supply chain security strategy?

Threat & Vulnerability ManagementThird Party Risk Management (TPRM)

We have recently updated our strategy.21%

Yes48%

No, but I expect we will reevaluate our strategy.20%

No8%

Other (please share in the comments)

466 PARTICIPANTS
3.5k viewscircle icon1 Upvotecircle icon1 Comment
Sort by:
IT Manager in Constructiona year ago

I see most of us are planning for a change, someone can write the reason?
Is it due to AI?

Content you might like

Our organization is in the process of re-engineering a recruitment system and would like to know gaps, risks and vulnerabilities in development of languages and databases: the following were identified 1. PHP 8.x-Microsoft SQL through ODBC 2. ASP.NET-Microsoft SQL 3. Java-Microsoft SQL

Apart from applying the patches just released, what other mitigation tactics are you using to address the zero-day SharePoint vulnerabilities impacting on-premises servers?

What’s the most effective trigger for initiating a technology risk reassessment in your organization?

Significant system change or upgrade20%

Audit finding or compliance review60%

Emerging external threat (e.g., zero-day vulnerability)18%

Business leadership request3%

View Results

Have you patched Log4j yet?

Yes42%

Yes, but third & Nth parties are still a concern43%

Mostly10%

No3%

Don't know

View Results

Does anyone have recommendations for risk management background services for a large technology consulting company? The employee count is over 20K.