View all newsletters
Receive our newsletter - data, insights and analysis delivered to you
  1. Technology
  2. Cybersecurity
September 16, 2016updated 18 Sep 2016 7:47pm

Uber, Twitter, Airbnb and Dropbox set to tackle supply chain cyber security with new alliance

By Ellie Burns

A new coalition of tech companies including Uber and Twitter has formed to collaborate on cyber security issues and practices.

The Vendor Security Alliance aims to address the cyber security risk of company’s business partners, a growing issue in cyber security.

The VSA will work with top security experts and compliance officers will release a yearly questionnaire to benchmark risk. The questionnaire aims to provide a standardised assessment that can be applied across different industries.

Companies can use this to qualify vendors and ensure that this vendor has the required security controls in place.

Uber, docker, Dropbox, Palantir, Twitter, Square, Atlassian, Go Daddy and airbnb are all founding members of the coalition.

The Board of Directors includes President Ken Baylor, Head of Compliance at Uber, Treasurer Bala Natarajan, InfoSec Manager at Pivotal and Secretary Rajan Kapoor, Senior Manager of Trust and Security at Dropbox.

The threat posed to organisations, regardless of their own cyber security, by their supply chains has been gaining more consideration since the breach of Target, a US retailer which was hacked in 2013. 40 million customer details were leaked and Target paid out $10 million to the victims.

Content from our partners
Green for go: Transforming trade in the UK
Manufacturers are switching to personalised customer experience amid fierce competition
How many ends in end-to-end service orchestration?

The intrusion into the systems came when network credentials were stolen from a refrigeration, heating and air-conditioning subcontractor.

Rajiv Gupta, CEO at Skyhigh Networks, commented on the formation of the coalition:

“Vendor vulnerability merits much more attention than it has received, even in the wake of egregious breaches like that of Target, which were enabled via trusted connections with third party vendors.

“Evaluating vendors is one part of the equation, but it is just as important to be able to actually enforce policies to prevent data from being shared with high-risk partners.”

According to Skyhigh Networks research, the average company connects to 1,555 partners through the cloud and 30 percent of corporate data is shared with partners that are high-risk.

Topics in this article :
Websites in our network
Select and enter your corporate email address Tech Monitor's research, insight and analysis examines the frontiers of digital transformation to help tech leaders navigate the future. Our Changelog newsletter delivers our best work to your inbox every week.
  • CIO
  • CTO
  • CISO
  • CSO
  • CFO
  • CDO
  • CEO
  • Architect Founder
  • MD
  • Director
  • Manager
  • Other
Visit our privacy policy for more information about our services, how New Statesman Media Group may use, process and share your personal data, including information on your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.
THANK YOU