Documente Academic
Documente Profesional
Documente Cultură
There are myriad security risks in giving third-party vendors access to your net
work and data. If a third party gets hacked, your company can lose vital busines
s data, and confidential employee information can be compromised. If it s a seriou
s hack, the consequences for your company can range from white-hot media attenti
on to a damaged reputation, lawsuit hell, higher insurance costs, extensive fina
ncial loss and even bankruptcy.
Some of the most devastating breaches in the past few years have been rooted in
the security weaknesses of third parties, and in fact, hackers themselves admit
that contractors are often their primary target. Case in point: the massive Targ
et breach in 2013, which exposed about 40 million debit and credit card accounts
. The initial intrusion into Target s systems was traced back to network credentia
ls stolen from a third-party HVAC vendor.
In a recent study it was shown that 63 percent of data breaches were linked to a
third-party vendor that was responsible for system support, development, and/or
maintenance. In some cases, the victimized companies did not even know that a t
hird party handled certain security functions.
Although it may be impossible to eliminate third-party security risks altogether
, you can do a better job of containing them through prudent planning, regardles
s of your company s size or IT budget. With that in mind, here are four important
steps a company can take to reduce the risk of data breach when it comes to work
ing with third parties: