Well, almost a year has passed, and we are really no closer to being able to conduct security control assessments on-site. So, for those of you who have been playing the waiting game, it’s time to get on board and start doing them virtually (or you can wait until the...
Brad Keller
The Uninvited Guest – Who Has Your Data?
Adjusting Contracts for Vendor Outsourcing The day of the big event has arrived. Hopefully, all your planning will ensure that everything goes well. And it does, until uninvited guests begin to arrive. It seems that several of your guests decided (without consulting...
Closing the Virtual Assessments Skills Gap
This blogpost identifies the Virtual Assessments Skills needed in risk programs post-pandemic. Weeks after the World Health Organization designated COVID-19 as a pandemic, EY and the International Association of Privacy Professionals (IAPP) mobilized their research...
Virtual Assessment Strategies – Assessing the COVID Era’s Virtual Realities – 2021 Perspectives
Count The Case of the Vanishing Vendor among the many pandemic-related unknowns and challenges third party risk management (TPRM) professionals were forced to contend with in 2020. Solving this mystery and developing virtual assessment strategies qualify as top 2021...
Effective Vendor Contracts For TPRM
How do you develop effective vendor contracts that keep pace with changing threats? This blogpost answers this question and is derived from Shared Assessments’ November 17, 2020 webinar on the topic. This discussion points to flexibility, the most crucial...
The Value of TPRM Community
COVID-19 has brought many changes to our lives. We all miss the sense of community. Spending time with neighbors and friends. Participating in school related activities. Being with family. But let’s not forget our work community - and the value of TPRM community. The...
Ten Tips for Virtual Risk Assessments using Shared Assessments’ TPRM Toolkit
This blogpost offer ten tips in checklist format for Virtual Risk Assessments.The Covid-19 Pandemic quickly shifted our world to a virtual perspective. Remote workers, remote vendors, remote classes and even remote family get togethers. These changes are not seen as a...
Moving From On-Site to Virtual Assessments
I remember when I first understood the impact that the COVID-19 pandemic was going to have on the world of third party risk management - it's when the need to move towards virtual assessments became apparent. I was at a meeting in Phoenix in early March and a...
Certified Career Enhancer
Seeking a promotion or a new job? The Certified Third Party Risk Professional (CTPRP) designation is worth considering. In a recent survey of CTPRP designees, 80 percent of respondents reported that the CTPRP training improved their ability to fulfill their...
Good Responses to Bad Contracts
Most third party risk managers eventually deal with bad vendor contracts. In most cases, these contracts – which lack important provisions or no longer conform to regulatory requirements or organizational guidelines – pose significant risks to the organization. Many...
Sub Topics
- Agreed Upon Procedures (AUP)
- Assessment Firms
- Banking and Financial Services
- Benchmark Study
- Benchmark Study
- Best Practices
- Best Practices
- Best Practices
- Big Data
- Board of Directors
- Brexit
- Briefing Paper
- Business Continuity
- Business Resiliency
- California Consumer Privacy Act (CCPA)
- Certification
- Certified Third Party Risk Professional (CTPRP)
- Checklist
- Cloud Computing
- Collaborative Onsite Assessment
- Compliance
- Contracts
- Corporate Culture
- Corporate Reporting
- Cyber Crime
- Cyber Insurance
- Cyber Risk
- Cyber Skills
- Cyberattacks
- Cybersecurity
- Cyberwarfare
- Data
- Data & Cybersecurity
- Data Breach
- Data Privacy Day
- Data Protection
- Dodd-Frank
- Education and Training
- Event
- FINRA
- Forth Party Risk
- Framework
- Fraud
- General Data Protection Regulation (GDPR)
- Global Risk
- Governance
- Guidance
- Hacking
- Health Insurance Portability and Accountability Act (HIPAA)
- Healthcare
- Identity Protection
- Incident Reponse
- Industry Members
- Industry Verticals
- Information Security
- Information Technology (IT)
- Internet of Things (IoT)
- Interview
- ISO
- Larry Ponemon
- Legal Industry
- Licensees
- Manufacturing
- Mobile Devices
- Municipalities
- National Institute of Standards and Technology (NIST)
- News
- News And Events
- OCC Framework
- Office of the Comptroller of the Currency (OCC)
- On-site Assessment
- Operational Risk
- Operational Technology (OT)
- Outsourcing
- Pandemic Planning
- Payments
- Payments
- PCI
- PHI
- PII
- Ponemon Institute
- Press Release
- Privacy
- Program Tools
- Program Tools
- Public Policy
- Regulations
- Regulatory Compliance
- Regulatory Requirements
- Research And Publications
- Risk
- Risk Assessment
- Risk Compliance
- Risk Management
- Risk Professionals
- Security
- Security Committee
- Service Providers
- Shared Assessments
- Shared Assessments Summit
- Software Security
- Standardized Control Assessment (SCA)
- Standardized Information Gathering (SIG)
- Standards
- Supply Chain
- Supply Chain
- Survey
- Template
- Third Party Oversight
- Third Party Privacy Tools
- Third Party Risk
- Third Party Risk Management
- Tokenization
- Tone at the Top
- Tools & Templates
- Uncategorized
- Vendor Assessment
- Vendor Onsite Assessment
- Vendor Oversight
- Vendor Risk
- Vendor Risk Management
- Vendor Risk Management Benchmark Study
- Vendor Risk Management Maturity Model (VRMMM)
- Vendor Security
- Vendor Threat
- Virtual Assessment
- Voice
- Webinar
- White Papers