Organizations can reduce their third-party risk by clarifying whether they or their suppliers are responsible for supply chain risk management, according to NCC Group research of 1400 cybersecurity leaders around the globe.
Around one-third of surveyed cybersecurity professionals said that they are more responsible for preventing, detecting and resolving supply chain attacks than their suppliers. However, 53% said that their company and its suppliers are equally responsible for the security of supply chains.