Third-party risk management (TPRM); environmental, social, and governance (ESG); risk quantification: These are all critical topics for information security teams to keep an eye on in 2023 as risk velocity continues to increase.
As digital transformation accelerates, organizations are turning to more third parties to carry out operations — and this results in more external risk that can be difficult to measure. On the ESG front, calls for more transparency have shone a spotlight on companies’ role in securing customer data.
Get your free copy of a new Information Security Media Group (ISMG) and AuditBoard ebook, TPRM, ESG, Risk Quantification: What CISOs Need to Know, in which Richard Marcus, VP of Information Security at AuditBoard, explains the growing importance of these areas.
Richard offers advice on how security leaders can take a strategic approach to these risks, including how to:
- Identify top threats and priorities for 2023.
- Determine who should be involved in the risk assessment process.
- Build rapport with senior leadership and the board.
- Manage the talent and skills gap.