I agree

Effective Vendor Contracts For TPRM

by Brad Keller | November 17, 2020 | Contracts, Third Party Risk Management

How do you develop effective vendor contracts that keep pace with changing threats? This blogpost answers this question and is derived from Shared Assessments’ November 17, 2020 webinar on the topic.  This discussion points to flexibility, the most crucial approach to everything this past ye ....

business people

Enhancing Third Party Provider Risk Management Through Aligning the Contracting, Security and Diligence Functions

by Eric Hess | September 30, 2019 | Contracts, Third Party Risk Management

As the founder of a law firm and two cybersecurity firms, my clients often reach out to me to manage technology contracts that have cybersecurity and privacy implications. My clients span the small with minimal processes to larger firms with Chief Information Security Officers (CISO’s), a separate ....


Good Responses to Bad Contracts

by Brad Keller | July 10, 2019 | Contracts, Third Party Risk Management

Most third party risk managers eventually deal with bad vendor contracts. In most cases, these  contracts – which lack important provisions or no longer conform to regulatory requirements or organizational guidelines – pose significant risks to the organization. Many of  these risks can be mit ....


Third Parties, Contracts and Brown M&Ms

by Sabine Zimmer | September 18, 2018 | Contracts, Third Party Risk Management

While walking outside on my way to an early meeting, between sips of coffee I was additionally jarred awake by a passing car with the music of Van Halen blaring through the speakers. As a fan of “early” Van Halen, I snickered to myself recalling the legend of the “Brown M&M’s” in their ....