Authorities on Risk Assurance

The Shared Assessments Blog

Is a New Certification Program the Key to Reducing Third Party Risk?

Published on June 26, 2015 By | Posted in: Certified Third Party Risk Professional (CTPRP) program, Data Breach, Risk, Risk Assessment, Third Party Risk, Third Party Risk Management

Hacker data breaches that exploit vulnerable third party vendors dominate news headlines, boardroom discussions, and C-suite meeting agendas. As a result of the proliferation of such attacks, it has become increasingly imperative for organizations to ensure successful evaluation, monitoring, and management of third party service providers that have access to systems and sensitive data. Such […]

Three Tips for Business Associates Outside the Healthcare Industry

Published on June 23, 2015 By | Posted in: Business Associate, Healthcare, HIPAA

Some business associates (BAs) have been around a long time serving all or mostly healthcare clients. For those companies, the ins and outs of the HIPAA Final Omnibus Rule of 2013—which expanded the definition of a BA and added new requirements—may be old hat. But many other companies outside the healthcare industry may not understand […]

Containing Cybersecurity Costs

Published on June 16, 2015 By | Posted in: Cybersecurity, Program Tools, Shared Assessments

Looking for advice about how to contain cybersecurity costs? The Thomson Reuters Legal Executive Institute named the Shared Assessments Program Tools as a solution. Read Containing Cyber-Costs: The Legal Industry Needs a Cybersecurity Audit Template to learn more.

COMPLY-Checking Your Vendors’ Cybersecurity Practices

Published on June 9, 2015 By | Posted in: Cybersecurity, Third Party Risk, Vendor Risk Managment

(Reuters) – A weak link in many financial advisers’ cybersecurity plans is the outside companies that help run their businesses, such as payroll companies and computer-repair firms. Shared Assessments Steering Committee member, Rocco Grillo, Managing Director and Global Leader for Incident Response and Forensic Investigations, Protiviti, recently contributed to the article, COMPLY-Checking Your Vendors’ Cyber-security […]

Using Peer Collaboration to Manage Supply Chain Risk

Published on May 29, 2015 By | Posted in: Collaborative Onsite Assessment, Program Tools, Risk, Risk Management, Supply Chain

Today’s companies are outsourcing more critical functions as part of their business operations in today’s complex environment. Every member of the supply chain must be evaluated to ensure they are properly protecting systems and data. With hackers specifically targeting third parties as a way to get to outsourcers’ data, this further emphasizes the need for […]

The Next Generation of Third Party Risk

Published on May 26, 2015 By | Posted in: Cyber Risk, Cybersecurity, Risk, Risk Management

As a follow up to the 8th annual Shared Assessments Summit, the themes of governance continued to focus on third party risk, when I conducted a webinar hosted by the New York Stock Exchange (NYSE) Governance services and sponsored by Prevalent. The focus on third party risk has shifted from a line manager to the […]

Recently Released: Law Firm Briefing Paper by Shared Assessments

Published on May 19, 2015 By | Posted in: Briefing Paper, Data, Law Firm, Security, Third Party Risk Management

The Shared Assessments Program is pleased to present a briefing paper based on the significance of information security and privacy controls on law firms as third party service providers and collaborative opportunities for resolution. This paper focuses on the issues law firms are facing as they adapt to providing a secure IT environment that meets […]

New Study: Healthcare Vendors Challenged with Security Healthcare Data

Published on May 18, 2015 By | Posted in: Data, Healthcare, Security

The Fifth Annual Benchmark Study on Privacy & Security of Healthcare Data, by the Ponemon Institute and ID Experts was announced and we wanted to share some interesting findings. For the first time, Covered Entities and Business Associates were surveyed, revealing the differences and similarities these organizations face when protecting healthcare data. The results indicate […]

How Do I Get This Up and Running? — Part II: Should My Program Be Centralized or Decentralized?

Published on May 16, 2015 By | Posted in: Risk Management, Third Party Risk, Third Party Risk Management

I have one of those “a-funny-thing-happened-to-me-on-the-way-to-the-dry-cleaners” stories and it just so happens to be a perfect segue from my previous blog as we now switch focus to targeting alignment and support of your key initiative or action within the organization. I received a call from a Senior Audit Manager from a major retail company who […]

New Year, New Landscape

Published on May 14, 2015 By | Posted in: News, Newsletter, Shared Assessments Summit, Third Party Risk Management

Shared Assessments gathered another impressive set of risk professionals and regulators at the Eighth Annual Shared Assessments Summit to address this year’s theme, Third Party Risk Assurance: Everything Old is New Again. Third party risk management may not be a new concept, but with emerging regulations, technologies and standards, more organizations are faced with adopting […]

Shared Assessments Licensee BSI
Shared Assessments Program licensee Enode logo
Shared Assessments Licensee Pro Teck
Shared Assessments Program licensee Nice logo
Early Warning Logo
Shared Assessments Logo Iron Mountain
Shared Assessments Logo first data
Shared Assessments Logo Ernst & Young
Shared Assessments Licensee ControlCase
Shared Assessments Logo jpmorgan
Shared Assessments Licensee LTD Financial Services
Shared Assessments Licensee TD Ameritrade
Shared Assessments Logo Deluxe Corp
Shared Assessments Licensee Bank of the West
Shared Assessments Logo radian
Shared Assessments Licensee-Brainshark
Shared Assessments Licensee RSA
Shared Assessments Logo Lerner Sampson & Rothfuss
Shared Assessments Licensee White Hat
Shared Assessments Licensee ctg
Shared Assessments Licensee BWise
Shared Assessments Licensee Power Advocate
Aujas Information Risk Services Logo
Shared Assessments Logo Bank Of New York Mellon
Ellie Mae Logo
Shared Assessments Licensee Telerex
Shared Assessments Licensee Protiviti
Shared Assessments Logo sei
Shared Assessments Logo Deloitte
Shared Assessments Licensee Caanes
Shared Assessments Licensee Pivot Point Security
MetricStream logo
Shared Assessments Logo yodlee
Shared Assessments Licensee ZS logo
Shared Assessments Logo pwc
Shared Assessments Logo dtcc
Online Business Systems logo
Shared Assessments Logo zywave
Shared Assessments Licensee-Copytalk
Shared Assessments Licensee Identity Theft 911
Viewpoint Logo
Shared Assessments Logo usbank
Shared Assessments Licensee Lockpath
Shared Assessments Program licensee Churchill & Harriman logo
trusted integration logo
Shared Assessments Logo tsys
Shared Assessments Licensee Rsam
el paso electric logo