20 July 2017
visit www.finastra.com

Fico extends cybersecurity scoring to cover fourth party risk

11 July 2017  |  2663 views  |  0 Source: Fico

Silicon Valley analytics firm FICO today announced that its new release of the FICO Enterprise Security Score quantifies the breach risks introduced by 4th parties — a partner or vendor’s vendors.

The identification of 4th party risks is an increasingly important consideration for breach insurance carriers, who are concerned about hidden, aggregate risk exposures across their portfolio of insureds.

A report in the Financial Times this month noted that some 80 percent of large companies suffer a cyber breach every year, and the annual global damage estimate could be more than $400 billion. These risks become concentrated as organisations continue to adopt common cloud service providers to manage significant portions of their IT workloads. As new IT vulnerabilities are being exposed and exploited, identifying and quantifying these common, concentrated exposures in a portfolio of businesses can be critical to understanding and forecasting potential losses under different risk scenarios.

The FICO Enterprise Security Score now helps breach insurers and enterprise vendor management teams identify the vendor dependencies of their clients and business partners, including deployed IT components, and see the Enterprise Security Score of these 4th party relationships. The service also helps users identify common 4th party dependencies across a portfolio of 3rd party relationships.

“You can’t really understand your 3rd party risks without also understanding the downstream dependencies those organisations have with their own suppliers,” said Doug Clare, vice president of cybersecurity solutions at FICO. “Our customers tell us they need to understand these 4th party risks - specifically, and in aggregate. We worked with cyber insurance carriers to develop the new capabilities.”

“The ability to assess aggregate risks based on real data is becoming increasingly important to insurers,” said Mark Greisiger, president of NetDiligence®. “Cyber policyholders outsource so much of their computing/data resources that it’s a growing blind-spot for underwriters. Granular information regarding actual 4th party cyber risk dependencies would help insurers more accurately quantify their portfolio exposure.”

The FICO® Enterprise Security Score performs a complex assessment of an organisation’s network assets, applies advanced predictive algorithms, and then condenses the results down to a three-digit score that rank-orders based on the odds of breach for the organisation. Companies can use this score to understand and track their own performance, or evaluate the security risk of their vendors and other business partners. FICO was part of a consortium of industry leaders that developed new guiding principles for cybersecurity ratings.

Comments: (0)

Comment on this story (membership required)

Related company news

 

Related blogs

Create a blog about this story (membership required)
visit www.niceactimize.comvisit www.worldpaymentsreport.comvisit www.ncr.com

Top topics

Most viewed Most shared
German fintech factory FinLeap raises EUR39 millionGerman fintech factory FinLeap raises EUR3...
12199 views comments | 19 tweets | 15 linkedin
EPC gears up for pan-European instant paymentsEPC gears up for pan-European instant paym...
9538 views comments | 10 tweets | 28 linkedin
Man trapped in ATM slides 'help me' notes through receipt slotMan trapped in ATM slides 'help me' notes...
9459 views comments | 8 tweets | 20 linkedin
Festy unveils digital currency payments wristbandFesty unveils digital currency payments wr...
8915 views comments | 11 tweets | 7 linkedin
Mastercard to buy AI outfit BrighterionMastercard to buy AI outfit Brighterion
8304 views comments | 14 tweets | 20 linkedin