DACH Report: Managing Cyber Risk Across the Extended Vendor Ecosystem

Our 2020 Global Insights Report stated that “managing third-party vendor cyber risk is fast becoming the defining cybersecurity challenge of our time.” The cybersecurity landscape in the intervening period has proven that statement.

This past autumn, BlueVoyant commissioned its second annual survey undertaken by independent research organization, Opinion Matters. Twelve-hundred chief information officers (CIOs), chief information security officers (CISOs), and chief procurement officers (CPOs) responsible for supply chain and cyber risk management were surveyed from companies with 1,000 or more employees across a range of industries.

To gain a global perspective, the research was conducted in the following countries: U.S., Canada, Germany, the Netherlands, the United Kingdom, and Singapore. This was followed by commissioning two further European reports whereby an additional 450 respondents were surveyed across Europe in January 2022, making an overall total of 1,650 respondents. Two-hundred forty-eight of these were from DACH countries – Germany, Austria, and Switzerland.

Key Findings:

  • 99% of DACH respondents have suffered a cybersecurity breach because of weaknesses in their supply chain/third-party vendors
  • 99% of companies have been negatively impacted by a cybersecurity breach that occurred in their supply chain
  • DACH respondents have experienced 3.57 breaches in the last 12 months on average

Download the report to understand the full scope of third-party supply chain cyber risk. This report is in German and features DACH findings.