Understanding Vulnerabilities Across the IoT & Your Supply Chain

The corporate attack surface is rapidly expanding: how can security professionals get ahead of the curve and create resilient organizations? Recent events suggest that easily-exploitable vulnerabilities are all too common, and they’re not limited to the technologies we commonly consider; Internet of things (IoT) devices could represent the next great risk to the enterprise, not to mention third-party supply chain partners. The challenge is growing more serious each day. BitSight recently announced the discovery of critical vulnerabilities in a popular IoT device – a vehicle GPS tracker – potentially allowing hackers to track vehicles, remotely disable corporate fleets, and more. Explore media coverage on this research in The Associated Press, Bloomberg, and TechCrunch. 

 1 CPE Credit 

On this self-study course you will learn how security professionals can ensure that their organizations are taking advantage of the benefits of technologies without unintentionally creating new risk.

Participants who pass the exam will earn 1 CPE Credit from this program. 

Course Publication Date: October 31st, 2022
Course Review Date: October 31st, 2024

Facilitated By:

Jake Olcott

Jake is the Vice President of Communications & Government Affairs at BitSight. For years, Jake has helped organizations create sustainable third party risk management programs. Jake has held a number of leadership roles at BitSight since joining the company in 2015. Prior to BitSight, Jake served as cybersecurity attorney to the Senate Commerce Committee and House Homeland Security Committee. He previously consulted with Fortune 1000 executives on cyber risk management and served as an adjunct professor at Georgetown University. He holds degrees from the University of Texas at Austin and the University of Virginia School of Law.



Created By:

Chris Burton

Founder of Executive IT Forums, Inc. Program Director, IT GRC Forum. Chris has been working in the technology content marketing field for over 20 years focusing on enterprise cybersecurity and regulatory compliance in industries ranging from healthcare and finance to manufacturing and retail. In 2008 he founded Executive IT Forums, Inc, and set up the IT GRC Forum to produce educational content for Governance, Risk Management, and Compliance (GRC) Executives. Chris is primarily responsible for content design, course development, and delivery of educational programs, and he excels in helping clients to maximize the executive value achieved across GRC campaigns.


NASBA Approved
GRCCPEacademy.org from Executive IT Forums, Inc.(Sponsor Id#: 112059) is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website: www.nasbaregistry.org