Unit 42 Supply Chain Risk Assessment

Unit 42 Supply Chain Risk Assessment Benefits

• Identify unknown risks. Unit 42 will help reveal vulnerabilities caused by vendors across your supply chain and address risks that can leave your organization susceptible to compromise.

• Reduce your attack surface. By understanding and prioritizing the risks, vulnerabilities, and threats introduced by your vendors—and then eliminating these issues—you’ll reduce your attack surface and lower the likelihood of suffering a supply chain attack.

• Due diligence. With Unit 42, you can apply the Palo Alto Networks proprietary vendor due diligence framework to ensure that your vendors are adhering to recommended security standards and maintaining information technology hygiene.

Unit 42 Supply Chain Risk Assessment Methodology

Unit 42 offers an evidence-based framework to help you manage the growing threat of supply chain attacks.

Figure 1: Unit 42 Supply Chain Risk Assessment Methodology

• Gather context. We establish a clear understanding of your procedures, tools, and capabilities through a pre-engagement survey.

• Due Diligence Assessment: Using our proprietary vendor due diligence framework, we identify cybersecurity risks across your supply chain.

• Attack surface mapping: Leveraging Cortex Xpanse® data, we create a detailed map of your asset inventory and internet-facing attack surface.

• Penetration testing and threat hunting. Expert threat hunters and technical testing will uncover hidden cybersecurity risks and exploitable weaknesses.

• Detailed findings and remediation support: You receive a detailed report highlighting risks and vulnerabilities and get our help to implement recommendations to improve.