Latest news with #thirdPartyRisk
Yahoo
6 days ago
- Business
- Yahoo
BigID Introduces First Data-Driven Assessment for AI Governance and Third-Party AI Use
New capability gives organizations visibility into third-party AI use, data exposure, and governance gaps across their vendor ecosystem. NEW YORK, June 16, 2025 /PRNewswire/ -- BigID, the leader in data security, privacy, compliance, and AI data management, today announced the launch of Vendor AI Assessment, the first solution of its kind designed to help organizations identify, evaluate, and manage the risks introduced by third-party AI usage. As vendors race to embed GenAI, large language models (LLMs), and autonomous agents into their products, organizations are left in the dark about how AI is being used - and what risks it introduces to their data, privacy, and compliance. Today, BigID becomes the first company in security or privacy to launch a dedicated, data-driven assessment solution focused specifically on vendor AI use. Expanding on its leading capabilities in vendor management and third-party risk, BigID now enables organizations to assess not just who they do business with, but how those vendors are using AI and what impact that AI has on sensitive data. Unlike traditional governance tools that rely on static surveys, BigID discovers deployed models, maps them to the data they access, and provides actionable risk intelligence across AI usage, exposure, explainability, and regulatory readiness. For the first time, security, privacy, and legal teams can hold vendors accountable for AI transparency, ensuring they understand whether vendor AI is trained on customer data, whether results can be trusted, and whether the risks are worth the rewards. According to BigID's 2025 AI Risk & Readiness Report, 64% of organizations lack visibility into AI risk exposure, and nearly half have no AI-specific security controls in place. These findings reveal a growing blind spot in enterprise governance: third-party AI use. While many organizations are still building internal AI oversight, BigID helps extend that visibility to a critical but often overlooked threat vector - vendor AI. Key Takeaways: Identify and reduce third-party AI risk before it impacts your business with the industry's first solution to assess vendor AI use. Uncover vendor AI usage, data access, and training practices to mitigate unwanted data exposure and improve governance. Operationalize AI oversight with built-in workflows for risk scoring, documentation, and remediation. Equip privacy, legal, security, and compliance teams to respond to AI-related regulatory demands, especially as 55% of organizations report being unprepared for emerging AI regulations. Stay ahead of AI-driven third-party threats with continuous visibility, faster risk-based decisions, and defensible governance across your ecosystem. "AI adoption is accelerating, but most organizations remain blind to how their vendors use AI on their data," said Dimitri Sirota, CEO of BigID. "We built Vendor AI Assessment to help security, privacy, and legal teams uncover these blind spots, reduce exposure, and ensure responsible use of AI across their third-party ecosystem." "BigID continues to innovate with Vendor AI Assessment. Given the rapid integration of AI in vendor offerings, businesses must demand transparency and accountability," said Dr. Edward Amoroso, CEO of TAG & Research Professor at NYU. "BigID's Vendor AI Assessment provides a crucial tool for organizations to understand and mitigate the unique risks posed by third-party AI use." Learn More: Book a demo Read more at About BigID BigID empowers organizations to know their enterprise data and take action for data-centric security, privacy, compliance, AI innovation, and governance. Customers deploy BigID to proactively discover, manage, protect, and get more value from their regulated, sensitive, and personal data across their data landscape. BigID has earned numerous accolades, including being highlighted as CRN's top 100 security companies two years in a row in 2024 and 2023, a finalist in CRN's 2024 Tech Innovator Awards, recognized as the most innovative security company of the year for its AI data security in the 2024 Globee Awards, and named as a "Market Leader Data Security Posture Management (DSPM)" in the 2023 Global InfoSec Awards. Additionally, BigID's impressive growth earned it a spot on the 2024 Deloitte 500 for the fourth consecutive year, one of CNBC's Top 25 Startups for the Enterprise, named to the Forbes Cloud 100, and recognized on the 2024 Inc. 5000 for the fourth consecutive year. View original content to download multimedia: SOURCE BigID
Zawya
21-05-2025
- Business
- Zawya
UAE born Genesis Platform ignites a new era of AI-driven third-party cyber-risk management for the GCC
Third-Party Risk Management (TPRM) is the discipline of identifying, assessing, and continuously monitoring the cybersecurity posture of the hundreds or even thousands of external vendors, suppliers, and partners modern enterprises rely on. Because every connected third party can become an attacker's entry point, TPRM has become a board-level priority across banking, energy, government, and beyond. Genesis Platform, the UAE-built platform that automates this entire lifecycle, today announced the GCC rollout of its next-generation TPRM solution while simultaneously showcasing the platform inside the official UAE Pavilion at GITEX Europe (Berlin, 21–23 May 2025). The launch comes at a pivotal moment: the Middle East records the world's second-highest breach costs averaging US $8.75 million per incident. Why the Timing Is Perfect for the GCC Regulatory Pressure: The UAE Central Bank's Outsourcing Regulation requires banks to prove robust third-party oversight. Central Bank Rulebook Saudi Arabia's National Cybersecurity Authority (NCA) mandates a documented third-party cybersecurity policy in its Essential Cybersecurity Controls. Digital-Economy Ambitions: The UAE's 2031 vision and the region's broader digital-economy strategies hinge on trusted supply chains and secure data interchange. CybersecAsia The UAE's 2031 vision and the region's broader digital-economy strategies hinge on trusted supply chains and secure data interchange. CybersecAsia Escalating Risk & Cost: Breach costs in the Middle East rose nearly 9 % in the past year, outpacing global averages. The National The UAE's First Home-Grown Third-Party Cyber-Risk Platform Engineered for the Gulf's evolving threat landscape, Genesis gives UAE organisations a clear benchmark of their own and their vendors' cyber-security maturity. By fusing real-time external-attack-surface data with AI-driven analytics, the platform delivers actionable insights that go far beyond traditional vendor scorecards. What Makes Genesis Different Legacy Approach Genesis Advantage Static questionnaires that delay onboarding by weeks AI Auto-Fill cuts vendor response time by up to 90 % One-off assessments Continuous outside-in scanning (DNS, misconfig, breach intel) keeps scores live Siloed spreadsheets Unified dashboard mapping scores to Global standards like ISO 27001, DORA, GDPR and more Manual remediation follow-up AI-generated fixes and workflow tracking built in Availability Genesis is now inviting GCC organisations to join its Early Adopter Programme, offering: 20-day full-feature trial Complimentary vendor-portfolio scan (up to 10 suppliers) Executive risk briefing aligned to local regulations About Genesis Genesis is the GCC's first home-grown, AI-powered third-party cybersecurity risk-management platform. Headquartered in Ras Al Khaimah, the company's mission is to accelerate secure digital transformation by eliminating manual questionnaires and delivering real-time vendor intelligence.
