by Sabine Zimmer | August 9, 2019 | Framework, Tools & Templates
The July 2019 Shared Assessments Member Forum introduced the first sections of the Program’s Third Party Risk Management (TPRM) Framework. The Framework is a new member resource designed to provide TPRM guidance to risk professionals across the experience spectrum. The first module of the Framewor ....
by Sabine Zimmer | September 19, 2018 | Data & Cybersecurity, Data Breach, Public Policy, Regulations, Third Party Risk Management, Tools & Templates, Vendor Risk Management Maturity Model (VRMMM)
Tick Tock. It’s that time of year again. Summer’s heat waves are retreating, school is in session, and budget planning is well underway for 2019 and beyond. Each year organizations typically take focused time during Q3/Q4 to evaluate their strategic plans; monitor the evolving risk environment; ....
April 11, 2017 | Best Practices, Business Resiliency, Certified Third Party Risk Professional (CTPRP), Cybersecurity, Education and Training, Framework, Outsourcing, Risk, Risk Management, Security, Third Party Risk, Third Party Risk Management, Vendor Risk Management
The Shared Assessments Program is the only organization that has uniquely positioned and developed standardized resources for managing the complete third party relationship lifecycle. Such standardization is critical to the advancement of effective, secure third party controls and risk management in ....
January 17, 2017 | News And Events, Research And Publications, Shared Assessments, Tools & Templates
Shared Assessments finished the 2016 year with 85 new members, a 25% increase over 2015. We closed out the year with a total of 226 members, showing continuing year-over-year growth in the commitment of organizations to improving third party risk management and advancing best practices worldwide. ....
January 13, 2017 | Cyber Crime, Cyberattacks, Cybersecurity, Data & Cybersecurity, Hacking, Program Tools, Security, Third Party Risk Management, Tools & Templates
The Threat Horizon The December 29th joint analysis report (JAR) GRIZZLY STEPPE – Russian Malicious Cyber Activity, contains specific indicators of cyberattacks and steps organizations can take to mitigate the “the tools and infrastructure used by the Russian civilian and military intelligence S ....
December 14, 2016 | Agreed Upon Procedures (AUP), Press Release, Program Tools, Risk Assessment, Risk Management, Shared Assessments, Standardized Information Gathering (SIG), Third Party Risk, Third Party Risk Management, Tone at the Top, Tools & Templates, Vendor Risk, Vendor Risk Management, Vendor Risk Management Maturity Model (VRMMM), Vendor Security
Third party mishaps resulting in breaches and other newsworthy events continue to drive home the need for improved risk management program capabilities in all verticals. From planning for engagement, through due diligence and vendor selection, contract negotiations, ongoing and continuous monitoring ....