Video

How Diversity in Supplier Ecosystem Helps Mitigate Risks

Vishal Grover, apexanalytix, on Maintaining Business Continuity in Wake of Attacks
Vishal Grover, CIO, apexanalytix

The recent CrowdStrike outage, affecting millions of Windows systems, served as a wake-up call for CIOs and technology leaders. The outage raised questions about infrastructure readiness to fight such black swan events, and called for diversifying vendor ecosystems, said Vishal Grover, CIO at apexanalytix.

See Also: Rethinking Browser Security: From Risk to Asset

To mitigate similar risks and protect against business losses, it is crucial to implement proactive third-party and software supply chain compliance measures. Organizations must also maintain 24/7 availability of BitLocker recovery keys, conduct regular disaster recovery testing and perform comprehensive third-party risk assessments for mitigating IT, cyber, compliance and financial risks.

"Following the basics can prevent enterprises from falling for such incidents. If we work on robust redundancies and resiliency and cover the entire software supply chain with a good risk assessment plan, we can prevent businesses from being affected so badly," Grover said.

In this video interview with Information Security Media Group, Grover also discussed:

  • Importance of automating third-party risk assessments;
  • The inclusion of Tier 2 and 3 suppliers for analyzing risk posture;
  • Ensuring vendor diversity to mitigate risks.

Grover is responsible for establishing and maintaining a company-wide information security and risk management program. He has more than 20 years of experience across various disciplines including application development, database management, IT infrastructure and information security.


About the Author

Rahul Neel Mani

Rahul Neel Mani

Founding Director of Grey Head Media and Vice President of Community Engagement and Editorial, ISMG

Neel Mani is responsible for building and nurturing communities in both technology and security domains for various ISMG brands. He has more than 25 years of experience in B2B technology and telecom journalism and has worked in various leadership editorial roles in the past, including incubating and successfully running Grey Head Media for 11 years. Prior to starting Grey Head Media, he worked with 9.9 Media, IDG India and Indian Express.




Around the Network

Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing cio.inc, you agree to our use of cookies.