Catastrophic multi-party breach events show that cyber risk can originate in supply chain layers beyond your immediate third parties.
However, cybersecurity analysts are less likely to know who those supply chain vendors are, let alone receive rights to audit or risk assess them directly – leaving your organization exposed to a potential backdoor supply chain cyberattack.