SecurityBrief Canada - Technology news for CISOs & cybersecurity decision-makers
Canada

Third-Party Risk Management Stories

Global Stories

Third-Party Risk Management stories

IFT launches Fortitude compliance checks for regulated firms
Unified Communications

IFT launches Fortitude compliance checks for regulated firms

Recurring checks aim to help regulated firms spot compliance gaps in outsourced and in-house operations before breaches trigger penalties.

By Joseph Gabriel Lagonsin 4 min read Last week
BlueVoyant names John Hernandez as Chief Executive Officer
Unified Communications

BlueVoyant names John Hernandez as Chief Executive Officer

Pressure to simplify fragmented security tools is driving BlueVoyant’s leadership shake-up as John Hernandez takes over as Chief Executive Officer.

By Sofiah Nichole Salivio 4 min read Last week
Weel wins security certifications & launches Trust Centre
Digital Transformation

Weel wins security certifications & launches Trust Centre

Finance teams reviewing expense software may now see added assurance, as Weel has secured SOC 2 and ISO 27001 certifications and opened a Trust Centre.

By Joseph Gabriel Lagonsin 4 min read Last week
apexanalytix launches Qubiton for AI-powered supplier checks
Data Protection

apexanalytix launches Qubiton for AI-powered supplier checks

Businesses can now run supplier, tax and sanctions checks through AI tools, as apexanalytix opens access to more than 280 million records.

By Sofiah Nichole Salivio 4 min read Last week
Interos launches iQ platform for supply chain risk
Data Analytics

Interos launches iQ platform for supply chain risk

The new modules aim to quantify supplier exposure in dollars as businesses grapple with tariff shocks, reputational damage and lower-tier blind spots.

By Sean Mitchell 4 min read Last week
Broadridge takes stake in CENTRL for AI due diligence
Software-as-a-Service

Broadridge takes stake in CENTRL for AI due diligence

Financial firms could cut manual due diligence and RFP work as Broadridge embeds CENTRL's AI tools across asset management and retirement products.

By Karen Joy Bacudo 3 min read Last month
Manufacturing leads ransomware targets in 2025 report
Disaster Recovery

Manufacturing leads ransomware targets in 2025 report

Ransomware hit manufacturers hardest in 2025 as incidents climbed 56 per cent, with ageing factory systems and suppliers widening exposure.

By Sean Mitchell 4 min read Last month
Doppel wins ISO trifecta for AI, security & privacy
Firewalls

Doppel wins ISO trifecta for AI, security & privacy

The certifications strengthen customer assurance as AI-driven phishing and impersonation attacks rise, giving buyers clearer proof of Doppel's controls.

By Mark Tarre 4 min read Last month
Abacus wins CREST approval for penetration testing
Firewalls

Abacus wins CREST approval for penetration testing

Boards in regulated sectors now have firmer assurance after Abacus secured CREST approval for penetration testing, renewed annually.

By Joseph Gabriel Lagonsin 3 min read Last month
Manufacturers face CMMC readiness gap in defence chain
Ransomware

Manufacturers face CMMC readiness gap in defence chain

Smaller defence suppliers risk losing contracts as many underestimate the paperwork and evidence needed to pass new cyber checks.

By Sean Mitchell 4 min read Fri, 27th Mar 2026
NetRise launches Provenance to trace open source risk
DevOps

NetRise launches Provenance to trace open source risk

Enterprises could spot compromised maintainers sooner, as the new tool maps open-source contributors, dependencies and policy breaches across builds.

By Sean Mitchell 5 min read Thu, 26th Mar 2026
Appdome launches Vault for mobile compliance history
Mobile Device Management

Appdome launches Vault for mobile compliance history

Audit teams can now trace mobile app controls over time, as the new workspace records policy changes, builds and approvals in one place.

By Mark Tarre 4 min read Thu, 26th Mar 2026
Risk Ledger expands into Maryland to target US cyber market
Software-as-a-Service

Risk Ledger expands into Maryland to target US cyber market

The UK-founded firm will now hunt US customers from Maryland, where supply chain cyber risk is drawing tighter scrutiny from boards and regulators.

By Sofiah Nichole Salivio 3 min read Thu, 26th Mar 2026
Risk Ledger expands into Maryland to target US cyber
Partner Programmes

Risk Ledger expands into Maryland to target US cyber

UK supply chain cyber firm Risk Ledger opens a Maryland base to build its US team and tap growing demand for third-party risk oversight.

By Catherine Knowles 4 min read Wed, 25th Mar 2026
Drata launches AI tools for risk reviews & trust centres
Cloud Security

Drata launches AI tools for risk reviews & trust centres

Drata rolls out agentic AI tools to speed third-party risk reviews, automate security questionnaires and rapidly build online trust centres.

By Shannon Williams 4 min read Wed, 25th Mar 2026

Stories from Other Regions

Third-Party Risk Management stories

Collapsing grace period: When your adversaries never tire
Data Protection

Collapsing grace period: When your adversaries never tire

Attackers are now moving fast enough that patching delays, standing privilege and inherited trust leave organisations exposed within minutes.

By Chris Campbell 7 min read 2 days ago
UK cyber survey exposes gaps in basic security controls
Ransomware

UK cyber survey exposes gaps in basic security controls

Only 5% of businesses follow Cyber Essentials, leaving many firms exposed to breaches and looming reporting rules, experts warn.

By Sofiah Nichole Salivio 6 min read Last month
Cyber Essentials update raises bar on visibility gaps
Firewalls

Cyber Essentials update raises bar on visibility gaps

UK firms face automatic certification failures if any cloud account lacks MFA, as the revised scheme also tightens patching deadlines.

By Mark Tarre 4 min read Last month