What We Do
How we do it
Resources
TRU INTELLIGENCE CENTER
Our Threat Response Unit (TRU) publishes security advisories, blogs, reports, industry publications and webinars based on its original research and the insights driven through proactive threat hunts.
View Threat Intelligence Resources →
SECURITY ADVISORIES
May 31, 2023
CVE-2023-2868 – Barracuda Zero-Day Vulnerability
THE THREAT On May 23rd, the email security company Barracuda disclosed a new vulnerability impacting Barracuda Email Security Gateway (ESG) appliances. Exploitation of the vulnerability, by threat…
Read More
View all Advisories →
Company
ABOUT ESENTIRE
About Us
eSentire is The Authority in Managed Detection and Response Services, protecting the critical data and applications of 2000+ organizations in 80+ countries from known and unknown cyber threats. Founded in 2001, the company’s mission is to hunt, investigate and stop cyber threats before they become business disrupting events.
Read about how we got here
Leadership Work at eSentire
LATEST PRESS RELEASE
Mar 20, 2023
Exertis and eSentire Partner to Deliver 24/7 Multi-Signal MDR, Digital Forensics & IR Services and Exposure Management to Organisations Across the UK, Ireland, and Europe
Basingstoke, UK– 20 March, 2023. Leading technology distributor, Exertis, announced today that it has bolstered its cybersecurity services, adding eSentire, the Authority in Managed Detection and Response (MDR), to its Enterprise portfolio of offerings. eSentire’s award-winning, 24/7 multi-signal MDR, Digital Forensics & Incident Response (IR), and Exposure Management services will be available…
Read More
Partners
PARTNER PROGRAM
e3 Ecosystem
We provide sophisticated cybersecurity solutions for Managed Security Service Providers (MSSPs), Managed Service Providers (MSPs), and Value-Added Resellers (VARs). Find out why you should partner with eSentire, the Authority in Managed Detection and Response, today.
Learn more
ECOSYSTEM PARTNER RESOURCES
Apply to become an e3 ecosystem partner with eSentire, the Authority in Managed Detection and Response.
Login to the Partner Portal for resources and content for current partners.
Search
Data sheet / solution brief

Vendor Risk Assessment

Identify Your Risk of a Third-Party Breach

44%

of organizations revealed that they had experienced a Third-Party-related data breach in the last year1

33%

of organizations cited lack of internal resources as a challenge in evaluating Third-Party vendors1

48%

of organizations that experienced a third-party breach reported significant business consequences (reputational damage, discontinued business, financial loss)1

As ever-expanding digital networks necessitate expansion of third-party and vendor access to sensitive data, the old adage that a chain is only as strong as its weakest link has never been more relevant from a security perspective. In an unfortunate tradeoff, business enablement from third parties and vendors in turn present business risk. Lack of visibility and end-to-end control of vendor security practices increase the potential attack surface for which organizations must account. Unfortunately the scale and expertise required to assess potential third-party risk presents challenges for most organizations with resource constraints.

Based on the eSentire Security Framework that is built on the foundations of NIST, eSentire Vendor Risk Assessment is designed to help resource constrained organizations:

Factors Requiring a Vendor Risk Assessment:

What Does it Help You Answer?

  • What should my criteria be for assessing my third party partners and vendors against?
  • What questions do I ask to gather the right level of information?
  • How do I categorize my third parties and vendors against their potential to disrupt business?
  • Do my third party partners and vendors meet requisite security standards?
  • How effective are my current third-party risk policies and controls to mitigate against risk?
  • Who are my third party partners and vendors sharing my data with?
  • What measures do I require my third party partners and vendors to put in place that is balanced with their risk profile?
  • How do we track progress and improvement?
  • What controls should we put in place based on the assessment?

How Does It Work?

Deliverables

Make The Case For An eSentire Vendor Risk Assessment:

Download Now
References:
  1. eSentire/Spiceworks Third-Party Third-PartyRisk Research, January 2019

Ready to get started?

Connect with an eSentire Security Specialist to learn how we can help you build a more resilient security operation and prevent disruption.