Little Red Bad Data

Little Red Riding Hood and The Big Bad Data

by Sabine Zimmer | February 25, 2020 | Data, Tools & Templates

Everything in security boils down to data. Often, you are protecting private, sensitive or valuable data. You use data about data (Metadata). You monitor data about how people use your data (Security Events). You gather data on data in order to focus your attention (Security Alerts). You need data a ....


2020 Perspectives: Change, Fortune and Frame(works)

by Sabine Zimmer | February 24, 2020 | Standardized Control Assessment (SCA),

In 1964, the average tenure of companies on the S&P 500 was 33 years. In 2016, that average tenure decreased to 24 years. By 2027, according to the consulting firm Innosight, companies will remain on the S&P 500 for an average of only 12 years. This “corporate longevity” research frames ....

rapidly changing landscape

Dynamic Due Diligence – TPRM Framework Module 6

by Sabine Zimmer | February 13, 2020 | Tools & Templates

While at first glance the topic of due diligence may appear to be a stodgy one, the reality of a rapidly changing risk landscape and the evolution of due diligence techniques suggests that the opposite is true. The latest section of the Shared Assessments Third Party Risk Management (TPRM) Framework ....

Shared Assessments Best Practices Guide and New Visual Tools Help Practitioners Demonstrate TPRM Program Value

by Sabine Zimmer | December 16, 2019 | Best Practices, Tools & Templates

Third party risk management practitioners today work in an environment rife with conflicting demands. Mounting pressure for speedy vendor onboarding is occurring in an environment that is facing escalating regulatory requirements, even in industries where in the past regulations have been minimally ....

Shared Assessments’ TPRM Framework – Member Forum Observations

by Sabine Zimmer | August 9, 2019 | Framework, Tools & Templates

The July 2019 Shared Assessments Member Forum introduced the first sections of the Program’s Third Party Risk Management (TPRM) Framework. The Framework is a new member resource designed to provide TPRM guidance to risk professionals across the experience spectrum. The first module of the Framewor ....

The Clock is Ticking …It’s Time to Focus on Maturing Vendor Risk Management Programs

by Sabine Zimmer | September 19, 2018 | Data & Cybersecurity, Data Breach, Public Policy, Regulations, Third Party Risk Management, Tools & Templates, Vendor Risk Management Maturity Model (VRMMM)

Tick Tock. It’s that time of year again. Summer’s heat waves are retreating, school is in session, and budget planning is well underway for 2019 and beyond. Each year organizations typically take focused time during Q3/Q4 to evaluate their strategic plans; monitor the evolving risk environment; ....

« Previous PageNext Page »