Select Page


SIM Swap Scams + Consumerization = TPRM Risk

These hacks represent a growing third party risk as the use of cell phones and related consumer technologies continue to increase.

Visit Blog


2020 Third Party Risk Management Summit

Registration is open and sponsorships are available for the 13th annual Summit. Join us April 29-30, 2020 in Arlington, VA.

Learn More


Get Certified in Third Party Risk

The Shared Assessments Program proudly offers two certifications for third party risk professionals and IT risk assessors.


Learn More


Why are we the trusted source in third party risk?


Shared Assessments provides the best practices, solutions and tools for third party risk management with the mission of creating an environment of assurance for outsourcers and their vendors. With over a decade of experience in third party risk, Shared Assessments is unique in that it is member-driven. Our membership has its foundation in the regulatory and compliance-driven big banks, but has grown to include organizations in a breadth of industries in search of good third party risk management as a standard operating practice. Our membership, along with internal third party risk experts, develop standardized resources for managing the complete third party relationship lifecycle. Standardization is critical to the advancement of effective, secure third party controls and risk management in an otherwise fractured market. As a part of elevating standardization, the Shared Assessments Program has created a suite of third party risk management tools to create efficiencies and lower costs for all participants, keep current with regulations and apply industry standards and guidelines to the threat environment as it evolves.
Learn More

The Toolkit

  • The Standardized Information Gathering (SIG) questionnaire tools collect the information necessary to conduct an initial assessment of a service provider’s controls.
  • The Standardized Control Assessment (SCA) procedure tools verifies a service provider’s answers to the SIG with onsite and other validation assessments.
  • The Vendor Risk Management Maturity Model (VRMMM) is a free tool to benchmark and measure third party risk management programs.
  • The Third Party Privacy Tools help organizations scope and assess a third party’s privacy program

Learn More

This site uses cookies

Please note that on our website we use cookies necessary for the functioning of our website, cookies that optimize the performance. To learn more about our cookies, how we use them and their benefits, please read our Cookie Policy and Privacy Policy.