The Vendor You Cannot Name | Lens Four by Sean Martin | Read by TAPE9

The Vendor You Cannot Name | Lens Four by Sean Martin | Read by TAPE9

From Redefining CyberSecurity by Sean Martin, ITSPmagazine

May 11, 2026 · 12 min · Episode 610

About this episode

The episode discusses a breach involving unnamed third-party vendors and the implications for CISOs.

Two U.S. banks disclosed a breach at the same unnamed third-party vendor in April 2026, with six class action lawsuits in two weeks. A regulatory clock about to start at suspicion, an NYDFS letter telling covered entities exactly what to do, and an insurance underwriter asking the same questions — Lens Four works through what the disclosure language is leaving out and what carries a CISO through the moment a vendor they cannot control fails on their watch.

People in this episode

Host: Sean Martin

Topics covered

  • cybersecurity
  • vendor management
  • data breach
  • regulatory compliance
  • insurance
  • CISO challenges

Keywords

  • cybersecurity
  • vendor breach
  • class action lawsuits
  • regulatory compliance
  • CISO
  • insurance underwriter

Mentioned in this episode

Organizations: U.S. banks, NYDFS, TAPE9

More episodes of Redefining CyberSecurity

Explore listener stats, chart rankings, contacts and more on the Redefining CyberSecurity podcast page.