Getty Images
Drata released its Third-Party Risk Management (TPRM) offering, empowering customers to identify, evaluate, and monitor third-party risks in one centralized and integrated platform.
"It's imperative for security professionals to have as much confidence in their third-party ecosystem as they do within the four walls of their own businesses," says Adam Markowitz, co-founder and CEO of Drata. "Drata's latest offering extends the power of its best-in-class continuous control monitoring to third-party vendors, taking TPRM to the next level."
Key takeaways:
- Drata's new Risk Trends Report found 83% of security professionals have experienced negative consequences as a result of their current TPRM process or informal oversight process. But investment remains a challenge, with 44% of respondents saying their company may not have the appropriate staff or resources to thoroughly screen third parties.
- Capabilities include vendor import, vendor impact analysis, vendor questionnaire responses, vendor risks, vendor risk overview and vendor insights dashboard.
- What’s more, the NIST AI Risk Management Framework (RMF) proactively sets standards, collects evidence, and monitors controls to ensure proper governance of AI adoption across the workforce.
- Also new is HRIS integrations, automating the evidence collection and control monitoring for 23-plus human resources information systems.