Cyber incidents are the main risk for companies for the third time in a row and for the first time by a clear margin.[1] The high level of dependence on suppliers and service providers along the entire supply chain is leading to increased interest and a need for control on their part. If critical vulnerabilities or cyber incidents are recognised at an early stage, damage can be effectively avoided or minimised.
It currently takes companies 73 days to get a cyber incident under control. During this period, they are mainly preoccupied with themselves. 40% of victims do not even recognise the incident themselves, but rather through external information.[2]
With CRISAM® Supply Chain Security Monitoring, you can increase both the detection rate and the detection time of cyber incidents. And not just for your own company, but for the entire supply chain.
At the same time, you optimally fulfil key regulatory requirements from NIS-2[3], DORA[4], the EU-Cyber Resilience Act[5], the LkSG in Germany[6], the EU-Supply Chain Act[7], as well as their transposition into national law.
CRISAM® Supply Chain Security Monitoring is part of the CRISAM® GRC platform and simplifies the entire process. With the following features, you have your supply chain under control:
[1] Allianz Commercial: Allianz Risk Barometer 2024
[2] IBM Security: Cost of a Data Breach Report 2023
[3] Directive (EU) 2022/2555 on measures for a high common level of cybersecurity across the Union
[4] Regulation (EU) 2022/2554 on digital operational resilience in the financial sector
[5] Regulation (EU) 2022/0272 on horizontal cybersecurity requirements for products with digital elements
[6] Law on corporate due diligence obligations in supply chains
[7] Directive (EU) 2022/0051: Corporate Sustainability Due Diligence Directive (CSDDD)