hero image

Teepee Blog

The Teepee blog shares insights and news on managing your vendor risk program.

How to Get Through A Backlog of Vendor Security Assessments

Vendor risk management / third party risk management is now a bedrock of most company’s information security program. As companies…

By Jonathan Mandell
October 29, 2022
The SCF – A Valuable Resource To Help Determine Vendor Controls For Assessments

It’s the start of a new year and a great time to check what controls you look for from vendors…

By Jonathan Mandell
January 10, 2022
Three Challenges For Vendor Risk Professionals

I recently watched the classic Japanese animation film ‘Spirited Away’. It was a magnificent movie, full of visual enchantment and…

By Jonathan Mandell
January 23, 2021
Banks and Vendor Risk Management

For a long time, banks in the United States have had a more rigorous vendor risk management process due to…

By Jonathan Mandell
November 3, 2020
A New Model For Vendor Risk Management

Teepee has developed a new model for vendor risk management. The prevailing model encourages companies to conduct a risk assessment…

By Jonathan Mandell
October 20, 2020
Teepee Manages Your Vendor Risk Program

Teepee is a cybersecurity service that performs vendor risk assessments on behalf of customers. We created Teepee to take a…

By Jonathan Mandell
September 15, 2020
Vendor Risk Management Has Arrived

I recently gave a presentation on the topic of vendor cyber risk management and one of the topics that I…

By Jonathan Mandell
August 20, 2020
The Renewal Assessment Is What Gets You

Gloria Estefan has a song where she says “The rhythm is gonna get you”. In the world of vendor risk…

By Jonathan Mandell
July 22, 2020
Shadow Buying And Vendor Assessments

One of the largest problems in vendor risk management is a company not conducting a security assessment of the vendor…

By Jonathan Mandell
July 9, 2020
Vendor Risk In The Media – WSJ: The Industries Most Vulnerable to Cyberattacks—and Why

The Wall Street Journal (WSJ) posted an article with research they conducted entitled The Industries Most Vulnerable to Cyberattacks –…

By Jonathan Mandell
June 23, 2020
Vendor Risk Management: The Rise Of The Marketplace App

I had a great conversation with a CISO of a small tech company that brought up a growing issue in…

By Jonathan Mandell
June 15, 2020
Should I Assess The Product Or The Company? Using Salesforce As An Example

This is a question that I’ve heard 50+ times over the past few years from a variety of companies that…

By Jonathan Mandell
June 12, 2020
Improving Your Vendor Risk Program: Should I Use The SIG Questionnaire?

I talk to a lot of people about their vendor risk program and since the process is so maddeningly difficult,…

By Jonathan Mandell
June 8, 2020
In Vendor Risk Management, It’s Not About The So Called ‘Talent Gap’

The amount of security professionals that have been hired by Corporate America over the past 10 years has been truly…

By Jonathan Mandell
June 4, 2020
The Saasification of Vendor Assessments

Why are companies drawn to SaaS vendors? I think the reasons for this are many but if I had to…

By Jonathan Mandell
June 3, 2020
Medium Sized Businesses and Vendor Risk Management

In starting Teepee, one of the most common questions I get is: “What type of businesses will you be targeting?” …

By Jonathan Mandell
May 26, 2020
The SEC and Vendor Risk Management

Vendor risk management is critically important for a number of reasons, and because of this, regulators in various industries have…

By Jonathan Mandell
May 18, 2020
The Sales Team and Vendor Risk Assessments – Less Scary Than You Think

A Vendor Security Assessment can be a black box for sales teams but it doesn’t need to be. More or…

By Jonathan Mandell
May 11, 2020
The Tale of Zoom Security Breaches, Vendor Risk and How They Converge In The Time Of Covid 19

Zoom Video Conferencing is THE technology company of the 2020 Covid 19 Pandemic. And its security and privacy weaknesses that…

By Jonathan Mandell
May 5, 2020
Why Is Vendor Risk Management So Hard

As I’ve mentioned in my other blog posts, the entire model is broken. Currently, a team of one person or…

By Jonathan Mandell
April 23, 2020
What Is Vendor Risk Management

Vendor Risk Management is, at first glance, explanatory by its name. What makes it difficult to understand is all the…

By Jonathan Mandell
April 23, 2020
Why I Started Teepee For Vendor Risk Management

Two Words – Massive Pain. It has become clear that the information security industry has accepted vendor risk as a…

By Jonathan Mandell
April 23, 2020

Contact Us Now!

Discover now