Ultima Risk Management has added ‘Abriska 27036’, a web-based tool that identifies supply chain risks associated with third-party suppliers, to its existing software. The tool provides an automated process for conducting supplier IT security risk assessments.
“Understanding and addressing supplier risk should be a continuous, ‘business as usual’ activity,” said Matt Thomas, risk and product director at Ultima Risk Management. “Many organisations are in a situation where, even though their own processes are locked down in terms of information security risk, they are leaving themselves vulnerable to supplier-related risks.
“I suspect many business owners and CEOs are kept awake at night because they probably don’t really understand what information security controls their suppliers have in place, and whether their own information is vulnerable as a result.”