The Third-Party Risk Assessment Program Manager at KPMG US uses BitSight Security Ratings as a key input in assuring that KPMG’s third-party suppliers and partners that will handle sensitive information are secure enough to keep that information protected. BitSight Security Ratings are monitored against thresholds that trigger potential investigation or re certification of suppliers. The use of the BitSight services increases the depth of KPMG’s risk assessment and decreases the time spent approving and recertifying key suppliers.
SANS What Works in Third-Party Risk Assessment: Using BitSight for Continuous Monitoring
