InfoSec Planning: Two Things to Keep in Mind for the Remainder of 2020

June 16, 2020

Although it feels like more has happened in 2020 than in the last ten years combined, it’s only June. There are still six more months to go. This isn’t meant to be a daunting statement, and actually means there are six months of opportunity left, especially for InfoSec teams.


Reflecting on the first half of 2020

While the rest of the world may have hit pause in early 2020, InfoSec and data security teams were spurred into action. During times of crisis or uncertainty, data threats increase, which means InfoSec teams face a slew of new challenges. Add to this the novel experience of working from home while managing data security and, simply put, the last few months have been a whirlwind for many in the industry.

While things are by no means back to normal—and critical global challenges and conversations still happening—InfoSec teams are starting to look to the future. Where does the industry go from here? How will vendor risk management look different over the next few months? How can our team put into practice what we’ve learned over the last few months?

Here are two things to keep in mind for the remainder of 2020:

1.  The riskiest period isn’t over yet.

The first half of 2020 was rife with security alerts, due in large part to the sense of confusion and uncertainty that clouded the world. Hackers often take advantage of these periods of disruption, which leave many vulnerable to attacks. While things are a bit more stable now, security teams can’t sit back and relax. This period of risk isn’t over and stands to pick back up again soon. For the second half of 2020, InfoSec teams must ensure that their security strategies are ready and able to withstand anything that may be coming down the road.

2.  Continue to strengthen your remote security.

In addition to increased security challenges, InfoSec teams have also had to adapt to remote working conditions. While many security teams will be among the first to return to their workspaces, the first few months of 2020 highlighted the necessity of remote security. If your team is back in action as a group, don’t take this to mean that remote work is a thing of the past. By proactively working to bolster remote security operations, InfoSec teams can prepare in case another unprecedented event occurs. More importantly, InfoSec teams can build a secure, scalable security infrastructure designed to weather even the harshest storm.


How Whistic can set your team up for success for the rest of 2020

For InfoSec teams, the next few months will be all about staying on top of vendor compliance, filling in the gaps in security processes, and strategizing for long-term success. Whistic, the proactive vendor security platform, makes it easy to manage, organize, and execute on vendor risk management strategies.

By bringing together internal and vendor-based security questionnaires, assessments, and data in a single Trust Catalog®, Whistic creates a single source of truth for all your vendor risk management activities. Whether your team needs to identify gaps, update assessments, or audit vendors, Whistic makes it easy to do things right the first time.

You can learn more about how Whistic can help set your InfoSec team up for success for the rest of 2020 here.

information security whistic security questionnaires vendor risk assessment infosec vrm proactive vendor security

About the author


The latest insights and updates on information security and third party risk management.

Hate security reviews?
Want FREE AirPods?*

Offer valid for any decision-maker/influencer in relation to your company’s third-party risk management strategy. Company size must exceed 100 employees. Exclusions apply. Limit 1 pair per company.