Supply chain attacks: The importance of proactive monitoring

12th December 2022BlogAJ Thompson

Are you ready to get in touch?

Request a Call back

Proactive monitoring of your supply chain: essential for cyber security

This blog post discusses the rise in supply chain cyber attacks and the importance for companies to identify and address vulnerabilities within their supply chains proactively. The National Cyber Security Centre (NCSC) has published new guidance for organisations to help them combat these types of threats. The large and complex nature of supply chains makes it difficult for companies to assess their level of risk, and many trust their partners without conducting thorough assessments.  By continuously monitoring their supply chain, companies can identify vulnerabilities and take steps to close them before cyber criminals exploit them.

Supply chain professionals discussing cybersecurity

Rise in supply chain attacks

The National Cyber Security Centre (NCSC) has published new guidance for organisations to help them combat cyber security threats in their supply chains. In recent years, there has been a significant rise in attacks on companies that have come through third parties and partners, often catching the target company off guard. Supply chain attacks have proven effective for cyber criminals as they allow access to a company through its partners, regardless of the amount a company spends on its own security.

Complex supply chains can lead to complacency in risk assessment

The large and complex nature of supply chains makes it difficult for companies to determine their level of risk, with many simply trusting their partners rather than taking a proactive approach. The government’s 2022 Security Breaches Survey found that only 13% of companies review the risks posed by their immediate partners and only 7% check their wider supply chain.

Traditional methods of assessment are inadequate

Even if companies are examining potential weaknesses, the traditional method of assessing a partner’s or potential partner’s cyber security strength leaves many vulnerable. Asking a partner to fill out a form detailing their cyber security practices is often considered sufficient to ensure supply chain security. However, it is clear that cyber criminals are increasingly targeting the partners of their intended victims, so more stringent measures are needed.

Comprehensive and continuous monitoring is key to securing your supply chain. Click To Tweet

The NCSC guidance recommends that companies regularly assess possible weaknesses in their supply chain and establish comprehensive reviews of potential and existing partners. By continuously monitoring their supply chain, companies can identify vulnerabilities and take steps to close them before cyber criminals exploit them. This proactive approach is essential for securing the supply chain and protecting against cyber attacks. Importantly, the NCSC guidance emphasizes the need for ongoing, continuous monitoring rather than a one-time or annual assessment.

Importance of a comprehensive view of vulnerabilities

As threats from cyber criminals continue to increase in sophistication, new vulnerabilities will be exposed. The key is to have a 360-degree view of all supply chain vulnerabilities and use solutions such as artificial intelligence to provide an up-to-date assessment of weaknesses and allow companies to address them before a cybercriminal can exploit them.

AJ Thompson, CCO of Northdoor, commented:
“It’s really encouraging to see the NCSC issue this new guidance. We have certainly seen cyber criminals increase their attention on supply chain attacks over the last couple of years. It is definitely a weakness in many organisations’ armor and an area that needs more attention.” 
Contact us if you want to learn more about protecting your supply chain against cyber attacks.

Can you trust your supply chain?

With more cyber breaches coming in through the ‘back-door’, what can organisations do to better secure supply chains? In this presentation, Rob Batters discusses the role of trust & how a 360-degree view of your supply chain is critical.

Client testimonials

“With the help of Northdoor’s guidance, we are now better equipped than ever to deal with threats to our cyber security.”

A Lloyds of London Insurance Company
Head of IT
“With Northdoor's third-party cyber risk platform, we have seen the time taken to assess third-party companies cut in half and we no longer have to manually approach our due diligence.”

Alan Cain
Global Information Security Officer, Pret A Manger
"Northdoor helps us facilitate sometimes tricky security analysis with our suppliers, making it an integral part of our vendor risk management program."

Miguel Fiallos
CIO, Salvation Army
The net impact of working with Northdoor is better service reliability on UK railways, saving time and money for RDG and its members, and improving freight and passenger rail services.”

Alain Cain, Head of Information Security
Rail Delivery Group
Cyber Resilience, Cyber-security, Riskxchange, Third Party Cyber Risk, Third Party Risk
AJ Thompson All Author's Posts
Interested in learning more about protecting your supply chain against cyber attacks?

Request a demo or contact sales on: 0207 448 8500

Request a demo

Latest Blog Articles

Security

Cyber security questions for C-suite

Find out the key cyber security questions that can help the C-suite transform its cyber security posture to build resilience.

Banking and Finance

Operational Resilience Legislation Frameworks

Understand how financial institutions can navigate the complex regulatory landscape to enhance their operational resilience.

Security

10 reasons to consider outsourced cyber security for your business

Protect your business with top-notch cyber security outsourcing services. Enhance your defenses and mitigate risks effectively.

See all blog articles

Our Awards & Accreditations

See all Awards