If you think your organization is taking oversight of third-party IoT implementations seriously, think again. According to a recent study by security research firm the Ponemon Institute, in conjunction with the Shared Assessments Program, few organizational boards require IoT risk assurances from third parties, providing CIOs a great opportunity to take a leadership position on IoT.
“From our research findings, it appears only 25 percent of respondents say that their boards require assurances that IoT risks are being assessed, managed and monitored appropriately,” says Catherine Allen, chairman and CEO of The Santa Fe Group, which manages the Shared Assessments Program, an industry-standard body focused on third-party risk assurance.
Leave a reply
