Post by Ceeyu

Two data breaches made headlines last week. All two had the same root cause: a third party. 1) Cognizant's TriZetto division was breached. 3,4 million patients had their health data exposed, patients who had no idea TriZetto even held their records. They were customers of hospitals and insurers that outsourced their data processing. 2) Infutor, a data broker used by brands for identity resolution, allegedly lost 676 million consumer records. The consumers affected never gave Infutor their data directly. Their information was passed down the supply chain without their knowledge. This is what third-party risk looks like in practice. Not a theoretical compliance checkbox. A vendor you trusted, holding data you're responsible for, with security controls you never verified. If you don't have visibility into your supplier landscape today, you're one vendor away from being the next headline. Start managing your third parties → ceeyu.io