In our first Member Forum Call of 2021, our Senior Advisors and Subject Matter Experts offered predictions for the months ahead along with compelling reasons to join the Shared Assessments member community. (Member Forum Calls offer the opportunity to earn CPE credits...
Sabine Zimmer
C-Suite Call to Action – Risk Management Through A Different Lens
This paper provides a quick overview and concrete action steps that will help organizations achieve superior outcomes over time. Traditional approaches that rely solely on point-in-time assessments can no longer keep up with rapidly changing or emerging risks....
Supply Chain Cybersecurity Questions and Answers
The Association for Supply Chain Management (ASCM) gathered subject matter experts to discuss cybersecurity in the supply chain in a LinkedIn Live forum. (ASCM is a non-profit, global leader in supply chain organizational transformation, innovation and leadership.)...
Adaptive Risk Management for Complex Supply Chains
This briefing paper provides a foundation for a more robust TPRM style – one that applies complex adaptive systems to the field of risk management to help practitioners understand step-function, cascading improvements in risk management processes they can apply to...
10 Tips for Managing Nth Party Risk
H.P. Lovecraft (American poet influenced by Edgar Allen Poe) wrote “The oldest and strongest emotion of mankind is fear, and the oldest and strongest kind of fear is fear of the unknown.” The Nth party is “the fear of the unknown”: you cannot see them, you do not have...
Developments and Technology in TPRM
From the ways we teach, learn and work to the COVID-19 vaccine itself, we’ve been challenged to develop new modes of accomplishing our work this year. This change has demanded that trends in Risk Management accelerate. We've seen Virtual Assessments, Automation,...
Framing TPRM for the C-Suite
Third Party Risk is increasingly a topic addressed in board rooms. As Rocco Grillo (Managing Director, Global Cyber Risk Services, Alvarez and Marshal) notes “the C-Suite and Board members are critical to the success and effectiveness of any TPRM program. Successful...
Risk Management Metrics – Cooking Down The Acronym Soup
Like most industries, in Risk Management, acronyms abound. Let’s sort through the acronym soup to understand the most important KRIs (Key Risk Indicators) and KPIs (Key Performance Indicators) for TPRM (Third Party Risk Management) or VRM (Vendor Risk Management). We...
Challenges in TPRM – Top 3 in 2020
The “Skirt Length Theory” of economics says that when the economy is performing well, women's skirts will be shorter, and in turn, skirts will be longer during downturns. Looking back at 2020, it is difficult to assess fashion trends as Go-To-Meeting and Zoom captured...
The Future of Work: Flexibility and Community Remain Key
Over my lunch hour ….such as it is in the work-from-home era…..I attended the Wall Street Journal Live Journalism session on the Future of Work. This blogpost gives a brief summary of the event and considers where The Santa Fe Group/Shared Assessments stands, or...
Sub Topics
- Agreed Upon Procedures (AUP)
- Assessment Firms
- Banking and Financial Services
- Benchmark Study
- Benchmark Study
- Best Practices
- Best Practices
- Best Practices
- Big Data
- Board of Directors
- Brexit
- Briefing Paper
- Business Continuity
- Business Resiliency
- California Consumer Privacy Act (CCPA)
- Certification
- Certified Third Party Risk Professional (CTPRP)
- Checklist
- Cloud Computing
- Collaborative Onsite Assessment
- Compliance
- Contracts
- Corporate Culture
- Corporate Reporting
- Cyber Crime
- Cyber Insurance
- Cyber Risk
- Cyber Skills
- Cyberattacks
- Cybersecurity
- Cyberwarfare
- Data
- Data & Cybersecurity
- Data Breach
- Data Privacy Day
- Data Protection
- Dodd-Frank
- Education and Training
- Event
- FINRA
- Forth Party Risk
- Framework
- Fraud
- General Data Protection Regulation (GDPR)
- Global Risk
- Governance
- Guidance
- Hacking
- Health Insurance Portability and Accountability Act (HIPAA)
- Healthcare
- Identity Protection
- Incident Reponse
- Industry Members
- Industry Verticals
- Information Security
- Information Technology (IT)
- Internet of Things (IoT)
- Interview
- ISO
- Larry Ponemon
- Legal Industry
- Licensees
- Manufacturing
- Mobile Devices
- Municipalities
- National Institute of Standards and Technology (NIST)
- News
- News And Events
- OCC Framework
- Office of the Comptroller of the Currency (OCC)
- On-site Assessment
- Operational Risk
- Operational Technology (OT)
- Outsourcing
- Pandemic Planning
- Payments
- Payments
- PCI
- PHI
- PII
- Ponemon Institute
- Press Release
- Privacy
- Program Tools
- Program Tools
- Public Policy
- Regulations
- Regulatory Compliance
- Regulatory Requirements
- Research And Publications
- Risk
- Risk Assessment
- Risk Compliance
- Risk Management
- Risk Professionals
- Security
- Security Committee
- Service Providers
- Shared Assessments
- Shared Assessments Summit
- Software Security
- Standardized Control Assessment (SCA)
- Standardized Information Gathering (SIG)
- Standards
- Supply Chain
- Supply Chain
- Survey
- Template
- Third Party Oversight
- Third Party Privacy Tools
- Third Party Risk
- Third Party Risk Management
- Tokenization
- Tone at the Top
- Tools & Templates
- Uncategorized
- Vendor Assessment
- Vendor Onsite Assessment
- Vendor Oversight
- Vendor Risk
- Vendor Risk Management
- Vendor Risk Management Benchmark Study
- Vendor Risk Management Maturity Model (VRMMM)
- Vendor Security
- Vendor Threat
- Virtual Assessment
- Voice
- Webinar
- White Papers