Blog

Explore our blogs for the latest insights, tips, and best practices in third-party risk management. Stay informed and protect your organization by navigating the complexities of third-party relationships with confidence. Read on to enhance your risk management strategy!

Blog Category - Tone at the Top

Board of Directors, Corporate Culture, Tone at the Top

Best Practices For Board Risk Committees

In partnership with Women Corporate Directors, The Santa Fe Group (managing entity of Shared Assessments) has explored the need for Board Risk Committees through a two-part webinar series. This blogpost describes the case for Board Risk Committees (BRC) and summarizes  the best practices...

Read More
Board of Directors, Corporate Culture, Tone at the Top

5 Ways To Strengthen Board’s Relationship With Cybersecurity

Cybersecurity’s emergence as a strategic risk has instilled the relationship between chief information security officers (CISOs) and board members with greater importance -- and higher stakes. Fostering a stronger cybersecurity capability requires directors to take their relationship with CISOs (and...

Read More
Board of Directors, Corporate Culture, Tone at the Top

5 Ways CISOs Can Deepen Board Relationships

Cybersecurity has swiftly become a strategic risk and a top boardroom concern. This shift has elevated the importance of the relationship between a company’s chief information security officer (CISO), or similar information technology (IT) executive, and its board -- especially...

Read More
Board of Directors, Corporate Culture, Tone at the Top

Failed Risk Controls – The Wells Fargo Saga, Part Two

By: Bob Jones, Senior Advisor, The Santa Fe Group, Shared Assessments Program and Gary Roboff, Senior Advisor, The Santa Fe Group, Shared Assessments Program. The Sales Practices Report released by the Board of Wells Fargo on April 10th provides an...

Read More
Agreed Upon Procedures (AUP), Press Release, Program Tools, Risk Assessment, Risk Management, Shared Assessments, Standardized Information Gathering (SIG), Third Party Risk, Third Party Risk Management, Tone at the Top, Tools & Templates, Vendor Risk, Vendor Risk Management, Vendor Risk Management Maturity Model (VRMMM), Vendor Security

Strengthening Third Party Risk Management with Agnostic Program Tools

Third party mishaps resulting in breaches and other newsworthy events continue to drive home the need for improved risk management program capabilities in all verticals. From planning for engagement, through due diligence and vendor selection, contract negotiations, ongoing and continuous...

Read More
Board of Directors, Tone at the Top

Tone At The Top: Culture Counts — The Wells Fargo Saga

“Tone at the Top” has become an often-quoted mantra in business circles but it appears to have shed a rather dim light when evidenced by the continuing saga at Wells Fargo. In a nutshell - in case you haven’t followed...

Read More
1 2