The Trusted Source in
Third Party Risk Assurance

  • Resources to effectively manage the critical
    components of the vendor risk management lifecycle
  • Creating efficiencies and lowering costs for all participants
  • Kept current with regulations, industry standards
    and guidelines, and the current threat environment
  • Adopted globally across a broad range of industries
    by both service providers and their customers

Membership & tools

Membership
Join our global community of risk management professionals and access our Tools and resources
Learn more about becoming a member of the Shared Assessments Program
Learn More »

Become a member of the Shared Assessments Program

"Adopting the Shared Assessments Program enabled Deluxe to reduce cycle time, improve quality, & streamline the due diligence process. At Deluxe, two-thirds of our due diligence requests use Shared Assessment tool."
— Linnea Solem, CIPP, CIPP/C, Chief Privacy Officer, Director of Business Risk & Privacy Management, Deluxe Corp, Shared Assessments Program Vice-Chair
  • Participate in a global community of information security, privacy, and third party risk management leaders
  • Gain access to members-only resource
  • Collaborate with industry peers on challenging issues in information and data security, privacy and business continuity
  • Gain opportunities for brand visibility & collaboration
  • Network with information security officers, privacy officers, and other subject matter experts

Just the tools

Purchase icon
Purchase our ready-to-use Tools to develop and manage your third party vendor assurance program.
Learn more about purchasing the world’s most comprehensive third party risk management tools
Learn More »

The world’s most comprehensive third party risk management tools

"The Shared Assessments Program’s rigorous standards are equal to or better than all other standards. We are very satisfied with the acceptance by our clients."
— Timothy J. O’Brien, Senior Vice President, Yodlee
  • Obtain efficiencies and cost savings by using just one document to establish and define your risk control environment
  • Reduce FTE costs by using one document to satisfy multiple client requests, rather than responding to multiple proprietary questionnaires
  • Used globally by financial institutions, healthcare organizations, energy/utility, retailers, telecommunications and others
  • Kept current with regulatory and industry standards
"The Shared Assessments Program’s rigorous standards are equal to or better than all other standards. We are very satisfied with the acceptance by our clients."
— Timothy J. O’Brien, Senior Vice President, Yodlee

Authorities on Risk Assurance

The Shared Assessments Blog

What’s Keeping Your CEO On Edge?

Published on March 3, 2014 By | Posted in: Risk Management, Security

Data Breaches. Big Data. The Future of Privacy Media headlines and the blogosphere are in overdrive regarding privacy, security, and risk after recent events, as

What You Should Know About The NIST

Published on February 24, 2014 By | Posted in: Cybersecurity

Background on the NIST Cybersecurity Framework On February 13, 2013, the Obama Administration released Executive Order 13636 calling for the development of a voluntary cybersecurity

ISO/IEC 27001:2013 – A New Set Of Clothes And A Common Language

Published on February 19, 2014 By | Posted in: Standards

BSI ISO/IEC 27001:2005 is nearly 8 years old and information security threats have changed substantially during this time. As part of the normal revision cycle

Hear Us Speak!

HIPAA Omnibus Online Panel Discussion hosted by Prevalent Networks

HIPAA OMNIBUS PANEL.jpg

SVP and Program Director, Brad Keller, and Shared Assessments Vice Chair Jonathan Dambrot participated in an online expert panel on HIPAA Omnibus and BA Risk Management.

Watch Now »

Expert Panel Discussion Hosted by Prevalent Networks and Symantec

event-300x168

Senior Vice President and Program Director, Brad Keller, recently participated on a Third Party Risk & Cybersecurity Expert Panel Discussion hosted by Prevalent Networks and Symantec.

Watch Now »

NEWS

2014 Shared Assessments Program Tools Released

New 2014 Shared Assessment Program Tools Deliver Comprehensive Assessment of
IT, Privacy and Data Security Controls to Manage Threats

Read Press Release »

2014 Shared Assessments Summit!

Mark your calendar for the 2014 Shared Assessments Summit - Royal Sonesta Hotel - Boston

  • May 19: Pre-Conference Workshop(s)
  • May 20: Shared Assessments Summit (full day)
  • May 21: Shared Assessments Summit (morning)

Members receive an additional 20% discount

Get your discount code

Contact Kelly Wagner at kelly@santa-fe-group.com for the discount code.

Learn More and Register »

In-House One Day Workshops

Shared Assessments Program Fundamentals: Navigating the SIG and AUP

Learn how to deploy the Shared Assessments Program Standardized Information Gathering (SIG) questionnaire and the SIG Management Tool (SMT) as a vendor risk assessment and a self-assessment tool.

Learn how to make the most of the Shared Assessments Program Agreed Upon Procedures (AUP) onsite assessment tool and AUP Report Template.

For more information, send an email to info@sharedassessments.org.

About One Day Workshops (PDF) »

Shared Assessments Licensee BWise
Shared Assessments Licensee LTD Financial Services
Genpact-logo-web
Early Warning Logo
Shared Assessments Licensee AON
Shared Assessments Program licensee Nice logo
Shared Assessments Licensee CIT
Shared Assessments Logo radian
Shared Assessments Licensee Telerex
Shared Assessments Logo Deloitte
Shared Assessments Licensee Pro Teck
Shared Assessments Logo yodlee
Shared Assessments Logo Drive Savers
Shared Assessments Program licensee Indecomm logo
Shared Assessments Licensee redtail
Shared Assessments Licensee ZS logo
NationalStudentClearinghouse
Shared Assessments Logo Electric Company
Shared Assessments Licensee Identity Theft 911
Shared Assessments Licensee Pivot Point Security
Shared Assessments Licensee ControlCase
Shared Assessments Licensee Bank of the West
Shared Assessments Logo Iron Mountain
Shared Assessments Licensee Lockpath
Shared Assessments Logo cvs
Shared Assessments Program licensee Enode logo
Shared Assessments Licensee RSA
PCV-logo-web
MetricStream logo
Shared Assessments Licensee Rsam
Shared Assessments Licensee Prevalent Networks
ProcessUnitybanner
Shared Assessments Licensee Power Advocate
intralinks-logo
Shared Assessments Licensee Protiviti
Shared Assessments Logo tsys
Shared Assessments Logo zywave
Shared Assessments Logo pwc
Shared Assessments Logo Goldman Sachs
Online Business Systems logo
Shared Assessments Licensee ctg
Shared Assessments Logo kpmg
Viewpoint Logo
Shared Assessments Logo Bank Of New York Mellon
Shared Assessments Licensee Modulo
Shared Assessments Logo dtcc
Shared Assessments Logo Deluxe Corp
Shared Assessments Logo jb&r
Shared Assessments Licensee TD Ameritrade
Shared Assessments Licensee-Brainshark
Shared Assessments Logo usbank
Shared Assessments Logo jpmorgan
Shared Assessments Program licensee Churchill & Harriman logo
Evault
Shared Assessments Licensee-Copytalk
Shared Assessments Logo first data
Shared Assessments Logo Lerner Sampson & Rothfuss
Shared Assessments Licensee BSI
Shared Assessments Licensee White Hat
Shared Assessments Licensee Caanes
Shared Assessments Logo Ernst & Young
Shared Assessments Logo ez shield
Shared Assessments Logo sei