Panorays’ Blog

Third-Party Security
Risk Management Blog

Learn about the latest research and happenings in TPCRM
Waht is Cybersecurity Questionnaire
Dov Goldman
10 June, 2025

What is a Cybersecurity Questionnaire?

The Okta and MOVEit supply chain attacks highlighted the challenge vendors face…
Third Party Cyber Risk Assessment
Demi Ben-Ari
10 June, 2025

How to Evaluate Third-Party Cyber Risk: Key Metrics…

Your extended supply chain is a source of strength for your business,…
The ROI of Implementing Risk Assessment Tools
Brooke VanHest
18 May, 2025

Trusted, Then Breached: The Hidden Risk of Security…

Organizations rely on trusted third parties, cloud providers, SaaS tools, and security…
Third-Party Risk Assessment: A Practical Guide
Demi Ben-Ari
15 May, 2025

Why Your Business Needs a Security Risk Assessment…

Modern businesses rely more heavily than ever on third-party vendors, cloud platforms,…
Security Questionnaires
Dov Goldman
15 May, 2025

Top Questions to Include in Your DORA Questionnaire

Ensuring compliance with the Digital Operational Resilience Act (DORA) is a top…
Shorten the Vendor Sales Cycle
Demi Ben-Ari
1 May, 2025

Building an Effective Vendor Management Framework for Your…

Businesses today rely on a growing network of third-party vendors to support…
Third-Party Risk Assessment: A Practical Guide
Demi Ben-Ari
29 April, 2025

How to Identify High-Risk Vendors in Your Supply…

Your supply chain is only as strong as its most vulnerable vendor….
DORA
Dov Goldman
27 April, 2025

Why DORA Regulation Matters in 2025

The Digital Operational Resilience Act (DORA) is reshaping how financial institutions manage…
2024 RSA
Matan Or-El
23 April, 2025

Third-Party Cyber Risk Management at RSA Conference 2025

RSA Conference 2025 will take place from Monday, April 28 to Thursday,…
Supply Chain
Demi Ben-Ari
15 April, 2025

Cybersecurity’s Weakest Link: Can We Ever Truly Secure…

There’s a troubling paradox in today’s world of cybersecurity: 91% of CISOs…
Inherent Risk
Dov Goldman
8 April, 2025

What is Inherent Risk and How It Guides…

According to a 2023 report by IBM, the average cost of a…
Responding to the GitHub Breach
Demi Ben-Ari
4 April, 2025

GitHub Actions Breach Exposes Supply Chain Vulnerabilities: How…

In March 2025, a sophisticated supply chain attack targeting GitHub Actions reminded…
Why Third-Party Risk Scores Fail Us & How to Regain Control With Context
Demi Ben-Ari
30 March, 2025

Why Third-Party Risk Scores Fail Us & How…

You're a CISO. Another day, another stack of vendor risk assessments and…
Third-party data breaches
Demi Ben-Ari
25 March, 2025

The Oracle Scare: A Wake-Up Call for Third-Party…

Oracle Cloud recently found itself at the center of a cybersecurity storm….
Security Compliance
Dov Goldman
24 March, 2025

Governance, Risk, and Compliance Software: How It Helps…

Regulatory requirements are becoming increasingly complex, with businesses facing heightened scrutiny across…

Featured Authors

The Fastest and Easiest Way
to Do Business Together, Securely

Get a Demo