Whistic and Vendor Security Alliance Announce Strategic Partnership to Improve Vendor Security Assessments

Share Article

The partnership allows Vendor Security Alliance (VSA) members to utilize Whistic’s vendor assessment platform to receive shared security reviews, fulfilling the VSA’s mission to streamline and improve vendor security.

When we examine large breaches that cause major brand damage and expose millions of consumers to data theft, we frequently find an unvetted vendor as the root cause

Whistic, a leading vendor assessment platform, today announced its selection by the Vendor Security Alliance (VSA), a coalition of companies committed to improving internet security, as the exclusive platform to manage the VSA’s industry-leading security assessment program. As a part of this partnership, Whistic was also selected as the platform that will host the VSA’s vendor security assessment questionnaire. More than 10,000 companies have downloaded the VSA’s questionnaire to date.

Founded in 2016 by companies committed to improving internet security, including Uber, Airbnb, Atlassian, Docker, Dropbox, GoDaddy, Palantir, Square, and Twitter, the VSA enables businesses to streamline their vetting process for vendors’ cybersecurity risks through its proprietary process. The VSA questionnaire serves to measure and mitigate vendor risk, ensuring companies consistently evaluate potential vendors using a predetermined set of criteria.

“When we examine large breaches that cause major brand damage and expose millions of consumers to data theft, we frequently find an unvetted vendor as the root cause,” stated Dr. Ken Baylor, President of the Vendor Security Alliance. “The VSA is directly focused on helping companies protect against the risks associated with third-party, vendor relationships. We needed a partner to help streamline and scale our organization’s impact, and we were very impressed with Whistic’s focus on vendor security, its commitment to customers, and it’s user-interface. We’re happy to partner with the Whistic team and provide our members with an intuitive solution for their vendor assessment needs.”

The VSA’s membership is now open to new companies, with recent members including Adobe, Coinbase, Rapportboost.ai, Taskus and Replicated, joining to demonstrate their commitment to improving vendor security. As a part of the partnership announcement, VSA members will gain access to Whistic’s assessment platform so they can receive shared security reviews commissioned by the VSA on behalf of its members. Information security teams and organizations will save resources that they would have otherwise spent duplicating assessments.

“We’ve been working through the VSA’s thorough vetting processes for nearly a year and it’s become abundantly clear how important streamlining vendor security is to the coalition,” commented Nick Sorensen, CEO of Whistic. “Whistic is honored to partner with the VSA and its repertoire of incredible members to help them extend the reach of their organization and ultimately help members better protect themselves and their customers against cybersecurity threats.”

About Whistic

Located in the heart of the Silicon Slopes in Utah, Whistic is a leading vendor assessment platform built for companies focused on protecting data and proactively managing security reviews. Whistic enhances evaluation of third-party vendor networks while improving the process of gathering, sending, receiving, and storing assessment information; thereby promoting mature vendor risk management programs. Whistic’s automated, streamlined platform also reduces the manual, time consuming effort that is typically synonymous with performing and responding to security reviews. Whistic is designed for an intuitive, collaborative user experience from initial vendor onboarding to ongoing assessment, and harnesses the wisdom of hundreds of security professionals to consistently deliver risk insights through its patent-pending CrowdConfidence scoring algorithm. For more information visit http://www.whistic.com, read the latest on the Whistic blog or follow Whistic on Twitter @Whistic_Inc.

About VSA:

The Vendor Security Alliance (VSA) is a coalition of companies committed to improving Internet security. Every day, industries across the globe depend on each other to embrace sound cybersecurity practices: yet in the past companies have not had a standardized way to assess the security of their peers. The VSA was formed to solve these issues and streamline vendor security compliance. In collaboration with the VSA, top security experts and experienced compliance officers will release a yearly questionnaire to benchmark their risk. Companies can leverage this questionnaire to qualify vendors and ensure the appropriate controls are in place to improve security for everyone. For more information visit https://www.vendorsecurityalliance.org/.

Share article on social media or email:

View article via:

Pdf Print

Contact Author

Allison Hoffman
+1 801-939-3896
Email >
Visit website