Panorays’ Blog

Third-Party Security
Risk Management Blog

Learn about the latest research and happenings in TPCRM
DORA
Dov Goldman
5 March, 2025

How to Conduct a Gap Analysis to Identify…

With the enforcement of the Digital Operational Resilience Act (DORA) rapidly approaching,…
Attack Surface Management vs. Vulnerability Management
Giora Omer
3 March, 2025

Automated Attack Surface Management: Enhancing Cybersecurity

Attack surface management, or ASM, has long been a critical component for…
Remediation vs Mitigation
Demi Ben-Ari
23 February, 2025

Remediation vs. Mitigation: What’s the Difference?

5 Key Things You Need to Know About Remediation and Mitigation Remediation…
Preventing phishing attacks
Demi Ben-Ari
23 February, 2025

Preventing Phishing Attacks: Cybersecurity Best Practices for 2025

Cybersecurity requires organizations to spot and respond to an array of threats,…
Third-Party Risk Assessment: A Practical Guide
Demi Ben-Ari
11 February, 2025

A Practical Guide to Third-Party Risk Assessment

As organizations increasingly outsource critical services and embrace migration to the cloud,…
Canadian School Data Breach: What CISOs Can Learn About Cloud Security
Brooke VanHest
6 February, 2025

Canadian School Data Breach: What CISOs Can Learn…

A recent data breach involving PowerSchool, a widely used cloud-based education platform,…
AI In Risk Management
Matan Or-El
6 February, 2025

The Role of AI and Automation in TPRM…

Today’s digital supply chain faces an unprecendented risk of ransomware attacks, data…
Vendor Risk Assessment
Demi Ben-Ari
4 February, 2025

10 Essential Features of Top Vendor Risk Management…

As the new year unfolds, security and third-party risk management teams are…
Top 6 Takeaways from the 2025 CISO Survey on Third-Party Cyber Risk Priorities
Brooke VanHest
4 February, 2025

Top 6 Takeaways from the 2025 CISO Survey…

As third-party relationships expand and supply chains grow increasingly interconnected, managing third-party…
91% of CISOs report rising third-party incidents: 2025 CISO Survey
Matan Or-El
4 February, 2025

91% of Cisos Report Rising Third-Party Incidents, but…

Panorays’ 2025 CISO Survey Reveals Critical Gaps and Urgent Priorities in Third-Party…
Shorten the Vendor Sales Cycle
Demi Ben-Ari
30 January, 2025

Best Practices for Remotely Conducting Third-Party Vendor Audits…

Vendor audits are undergoing a transformation as businesses adopt remote processes that…
Building a Cybersecurity Culture for Your Third Party Vendors
Demi Ben-Ari
28 January, 2025

Defending Against a Third-Party Ransomware Attack

On March 1 2024, an affiliate of the BlackCat ransomware group, also…
Vendor Risk Assessment
Dov Goldman
25 January, 2025

Top Vendor Risk Mitigation Strategies Every Business Should…

You rely on your vendors for vital services and/or components like cloud…
Third Party Risk Management (TPRM)
Matan Or-El
20 January, 2025

Cybersecurity Implications of Working with Global Third-Party Vendors

The barriers to cross-border partnerships have come crashing down. In today's global…
Supply Chain Vulnerability
Dov Goldman
18 January, 2025

How to Prepare for Supply Chain Disruptions and…

Today's global supply chains bring a lot of benefits for enterprises. Increased…

Featured Authors

The Fastest and Easiest Way
to Do Business Together, Securely

Get a Demo