Crossword Cybersecurity announced the creation of a new integrated Supply Chain Cyber practice.
In response to client demand and the substantial increase in supply chain cyber threat levels, the integrated practice provides a set of controls, processes and tools, along with a range of managed services, advice and training to massively reduce the risk of direct cyber-attacks as well as threats via third parties across a company’s supply chain.
The practice provides an end-to-end approach to supply chain cybersecurity and includes a standard operating model (SOM) and a substantially updated version of Rizikon Assurance, Crossword’s SaaS platform used by supplier management and cybersecurity teams and across an organization to underpin the controls, tools and data needed to reduce supply chain risk.
Updated Rizikon features include automated assurance, flexible reporting and new dashboards that improve supply chain cyber assurance, risk and compliance strategy, policy and operations.
Experienced cybersecurity consultant, Ryan King, has been appointed as Practice Lead and is supported by a dedicated team of experts specialising in supply chain cyber risk.
Today’s cyber threat potential is huge and growing fast. The European Under Agency for Cybersecurity (ENISA) reported in 2021 that it expected supply chain attacks to quadruple over the following 12 months. As a result, industries including but not limited to banking, retail and manufacturing are under mounting financial, reputational and regulatory pressure to take control of cybersecurity risks.
For organizations of any size, the greatest threats to cybersecurity are suppliers, third parties and connected technologies because they are so hard to control. Recent research independently conducted for Crossword of over 200 Chief Information Security Officers (CISOs) found that 83 per cent of CISOs viewed “ensuring that the entire supply chain is water-tight in its ability to defend and recover against threat actors” as a challenge.
Today’s solutions are failing – Crossword’s end-to-end approach addresses the fundamentals
Many organizations are still using internally focused ideas and solutions to try and address cybersecurity risks in the supply chain, but by definition these are not sufficient since they fail to holistically integrate the cyber risks originating from external third parties. Furthermore, the longer and more diverse a supply chain becomes, the faster the risks multiply in tandem with an organization’s inability to monitor and manage those risks.
Crossword’s Supply Chain Cyber approach is dedicated to meeting any organization’s cybersecurity and supply chain resilience obligations by providing an end-to-end solution. Crossword’s Supply Chain Cyber offering provides:
- A team of cybersecurity industry experts, dedicated to defining and delivering risk management best practice
- A comprehensive and flexible supply chain cybersecurity Standard Operating Model that defines processes, techniques and structures needed to manage supply chain assurance, compliance, and risk in any industry
- An updated version of Rizikon Assurance – an automated, SaaS-based platform for managing supply chain cyber assurance, compliance and risk strategy, policy, and operations
- Cost-effective supplier cyber audits and security testing
- Consulting services including supply chain cyber benchmarking, maturity assessments and advisory consulting, and training
- Complete managed services for supply chain cyber assurance, compliance, and risk management.
Stuart Jubb, Group Managing Director at Crossword Cybersecurity Plc, commented: “A whole new operating model and mindset is required to properly address supply chain cyber risks and attacks. Looking only inwards and relying on internally focussed controls, systems and thinking is not enough to protect organizations today. Crossword’s Supply Chain Cyber practice addresses the severity and fast-growing nature of risks present in supply chains. It gives our customers the tools and processes to securely and cost effectively manage these risks, benefiting not only the customer, but all members of their supply chain. The objective is to minimise collective risk and ensure cost-effective governance and adherence to regulations across all industries.”
Rizikon – elevate your supplier risk management
The supply chain cyber standard operating model (SCC SOM) is supported by Rizikon Assurance, a SaaS platform used by supplier management and cybersecurity teams and across an organization to underpin the controls, tools and data needed to reduce supply chain cyber risk.
Rizikon automates processes such as designing supply chain cyber policy, grouping suppliers, creating detailed assurance plans, applying appropriate assurance methods to each group, and reporting on risk, compliance, and assurance coverage across the whole supply chain. Rizikon also integrates with existing tools and data sources.