Partnership hopes to help organizations better gauge 3rd party cyber risks

CyberGRX and BitSight merge their tools as this type of risk is a top cybersecurity concern for healthcare organizations.
By Bill Siwicki
12:50 PM
Share
cybersecurity risks

A screen snap of a BitSight benchmarking graph. Photo via BitSight

Accounting for the risk third-party systems and services bring into a healthcare organization is a top challenge for hospitals and health systems trying to bolster their cybersecurity posture.

As healthcare digital ecosystems continue to expand, the number of vendors, partners and contractors with access to the enterprise’s network can greatly increase. Healthcare organizations need to understand the real risk posed by third parties if they are to successfully protect their data and organizations.

[Also: Black Hat, White Hat hackers agree: Phishing is best way to steal data]

CyberGRX, vendor of a third-party cyber risk management platform, and BitSight, a security ratings services firm, have partnered to embed BitSight’s proprietary security ratings capabilities within the CyberGRX Exchange, a marketplace for sharing third-party cyber risk security information.

Integrating BitSight’s objective, quantitative measurements of companies’ security performance into the CyberGRX Exchange provides a comprehensive view of third-party cyber risk, the companies said. The combination of BitSight’s security ratings, generated through externally observable data, with CyberGRX’s third-party cyber risk assessments can enable organizations to make more informed decisions and scale their third-party risk programs, the companies added.

[Also: How passwords are losing clout as a top-line defense against data hacking]

“BitSight’s ability to continuously rate the security performance of third parties from an outside-in perspective will strengthen the CyberGRX Exchange,” said Fred Kneip, CEO of CyberGRX. “Combining their proven non-intrusive approach to evaluating risk and security performance with the inside-out view our platform provides is a powerful proposition for customers: a comprehensive, continuous, 360-degree view of third-party cyber risk exposure.”

Enterprises today require access to accurate, continuous and actionable information about third-party cyber risk, said Jacob Olcott, vice president of strategic partnerships at BitSight.

“CyberGRX helps to solve that problem for companies across the world, and our security ratings provide the unique, objective data that organizations need to scale their third-party risk programs and make more informed business decisions,” Olcott said.

Twitter: @SiwickiHealthIT
Email the writer: bill.siwicki@himssmedia.com