WhiteHawk said in a statement that the company had been asked to implement its Cyber Risk Radar that provides continuous monitoring, prioritisation, and near real-time mitigation of an enterprise’s teammates, vendors, or supply chain’s cyber risks over time, including the identification and prioritisation of a risk mitigation strategy.
It said cyber risk scorecards would be provided quarterly, virtually and remotely for 150 to 300 vendors through an integrated risk management dashboard.
The annual software-as-a-service contract is expected to generate base revenue of US$580,000 (A$809,000), and up to an additional US$600,000 for each year of the contract. It can be renewed for four more years at the same price.
“This is about protecting a major US Government organisation from vendor risk.
“The big deal for us is that we are the prime contractor; this is a direct contract with us it’s not through another contractor.”
On three other US Federal Department chief information officer contracts, WhiteHawk is a cyber solution sub-contractor to Accenture Federal, SAIC and Guidehouse (formerly PWC Federal).
“Vendors are always a weak link in any organisation. You can have the best security ever but, of major cyber breaches, over a third are through vendors, contractors and providers," Roberts said.
“We all rely on our vendors, suppliers and partners. In today's digital age their risks are our risks. Previous methods of closing this back door involved primarily compliance and self reporting. Ours involve continuous risk monitoring of all publicly available datasets and AI-based analytics baked into our cyber risk scorecards.”