Authorities on Risk Assurance

The Shared Assessments Blog

Dear Member of the Board

Published on February 24, 2015 By | Posted in: Board's, Newsletter, Vendor Risk Managment, Vendor Security

Whether you’re a board member of a retailer like Starbucks or sitting on a large financial services board like JPMorgan Chase, I’ll bet you’re pleased at this point that you said no to SONY board membership. Though Enron is now nearly 13 years behind us, you may recall the U.S. Senate subcommittee finding that ultimately […]

Rightsizing Tiered Approaches for Risk & Compliance

Published on February 20, 2015 By | Posted in: Compliance, Risk

Last week was an active week of discussion on issues facing financial services companies. I presented at the 40th annual Roundtable for ISACA’s MN Chapter on The Next Generation of Third-Party Risk Management and attended Deluxe Exchange 2015, where an engaging keynote speech by Sheila Bair, former chair of the FDIC highlighted critical issues facing […]

Cybersecurity: The 2015 Buzzword for Banks (and Everybody Else)

Published on February 17, 2015 By | Posted in: Cybersecurity

Cybersecurity is the hot topic du jour. According to IBM’s 2014 Cyber Security Intelligence Index, there were 1.5 million monitored cyber attacks in the United States, and cites nation-state attacks, extortion, data destruction, and third party breaches among the biggest security threats for 2015. Regulators are taking notice, with recommendations and guidelines to help […]

Why Handshakes Are Not Enough — Vendor Risk Management is in the Details

Published on February 12, 2015 By | Posted in: Vendor Risk Managment, Vendor Security

The days of doing business with a handshake and a smile are long gone. However, one thing continues to remain constant—how few vendor contracts are updated, even if the scope of service changes. This can be detrimental to an organization, particularly if the vendor is handling sensitive data such as personally identifiable information (PII), protected […]

The Critical Need for Third-Party and Supply-Chain Management

Published on February 10, 2015 By | Posted in: Supply Chain, Third Party Oversight

The need for businesses to develop, implement and expand risk based strategies across their supply chains has never been more critical. Widespread environmental disasters, political turmoil, social unrest and the plethora of recent information security blunders have ever-increasing potential to cripple – even destroy – otherwise healthy businesses. This is especially true for companies that […]

Data Breach: Threats, Plan, Response

Published on February 9, 2015 By | Posted in: News

Recently, I had the opportunity to co-present with John Sileo, from at the 42nd annual seminar of the RIMS Society Minnesota chapter. John kicked off the event with a keynote titled “Data Spies, Hackers, and Online Attackers” which was a great foundation to our session on Cyber Security Fraud. While the audience was a […]

The Board’s Role in Managing Third-Party Relationships

Published on February 5, 2015 By | Posted in: News

Catherine A. Allen, Chairman and CEO, The Santa Fe Group, sat down with Erica Salmon Byrne, NYSE This Week in the Boardroom, to discuss the impact third parties can have on overall organizational brand and reputation. In addition, Catherine discussed the board’s role in third-party risk assessment.

Happy New Year EMV

Published on January 30, 2015 By | Posted in: Payments, Tokens

2014, on balance, was a very good year for progress in securing electronic retail payment transactions. Most importantly, many of the key payments stakeholders seemed to coalesce around the general understanding that three basic tools, EMV chip cards, payment tokenization, and end-to-end encryption were all essential to make real progress toward next generation payments security. […]

In 2015, Don’t Just Make New Year Resolutions Regarding Third Party Risk, Keep Them!

Published on January 29, 2015 By | Posted in: Certified Third Party Risk Professional (CTPRP) program, Program Tools, Third Party Risk Management

Start 2015 on the right foot including your third party risk management program. Here are some suggested “New Year’s Resolutions” to incorporate into your strategic and tactical plans for the coming year: Resolution #1: I will incorporate the new SIG 2015 into my third party program. The new Standardized Information Gathering (SIG) questionnaire, has been […]

How to Manage New Risks; Learn From Experts at the 2015 Shared Assessments Summit

Published on January 26, 2015 By | Posted in: Event, Risk Assessment, Risk Management, Shared Assessments Summit, Third Party Risk, Third Party Risk Management, Vendor Assessment

Now in its eighth year, the Annual Shared Assessments Summit brings together senior executives who will share best practices and the latest insights on managing third party risk. The theme of the 2015 Summit will be Third Party Risk Assurance: Everything Old is New Again. Click here to register. Over the last 18 months, organizations […]

Shared Assessments Licensee Protiviti
Shared Assessments Program licensee Enode logo
Shared Assessments Logo first data
Shared Assessments Logo radian
Shared Assessments Licensee ControlCase
trusted integration logo
Aujas Information Risk Services Logo
Shared Assessments Licensee Telerex
Shared Assessments Licensee ZS logo
Viewpoint Logo
Agio Logo
Shared Assessments Licensee RSA
Shared Assessments Licensee Rsam
Shared Assessments Program licensee Nice logo
Online Business Systems logo
Shared Assessments Licensee LTD Financial Services
Shared Assessments Licensee Identity Theft 911
el paso electric logo
Shared Assessments Licensee-Copytalk
MetricStream logo
Shared Assessments Licensee Caanes
Shared Assessments Licensee ctg
Shared Assessments Logo yodlee
Shared Assessments Logo zywave
Shared Assessments Logo Ernst & Young
Shared Assessments Logo dtcc
Shared Assessments Licensee Pro Teck
Shared Assessments Program licensee Churchill & Harriman logo
Shared Assessments Logo usbank
Shared Assessments Licensee-Brainshark
Shared Assessments Licensee Bank of the West
Ellie Mae Logo
Shared Assessments Logo jpmorgan
Shared Assessments Logo pwc
Shared Assessments Licensee Pivot Point Security
Shared Assessments Licensee Lockpath
Shared Assessments Logo Bank Of New York Mellon
Shared Assessments Licensee TD Ameritrade
Shared Assessments Logo Lerner Sampson & Rothfuss
Shared Assessments Logo Deloitte
Shared Assessments Licensee BSI
Shared Assessments Licensee White Hat
Shared Assessments Licensee Power Advocate
Shared Assessments Licensee redtail
Early Warning Logo
Shared Assessments Logo tsys
Shared Assessments Logo sei
Shared Assessments Licensee AON
Shared Assessments Logo Deluxe Corp
Shared Assessments Licensee BWise
Shared Assessments Logo Iron Mountain