IT Vendor Risk Management Questions
Jairo Willian Pereira
Information Security Manager at a financial services firm with 1,001-5,000 employees

Does anyone have recommendations about methodologies (e.g. use of FAIR framework), plug-ins (ETL schemas, FOSS add-ons) or commercial/free solutions (like Kenna) that can help us during "integration, transformation and consolidation" of vulnerability into risks (from Tenable.IO to Archer)?

James DirksenYes, take a look at DeepSurface. It’s designed to automate the process.