CTPRP Certification – Online On-Demand – Here, There, Everywhere
Remember the refrain from Green Eggs and Ham by Dr. Suess? “Would you? Could you?...In the rain? With a goat? In a car? Eat them! Eat them! Here they are.” Sam-I-Am tries to convince an annoyed Cat-In-The-Hat to eat green eggs and ham by combining the entrée with an...
What SolarWinds Means for IT Operational Due Diligence
As SolarWinds continues to be – and rightly so - a major discussion topic in cyber risk circles, I have noticed more conversation regarding the execution of the attack and less discussion as to what appears to be a lack of cyber hygiene at the infected organizations....
TPRM Metrics – Telling Your Risk Story
With his customary warmth, Tom Garrubba, Vice President, Shared Assessments, led a fireside chat about TPRM metrics with industry experts. This blogpost offers an overview of the session, sponsored by OneTrust, and outlines the 14 key metrics identified through this...
Supply Chain Regulation Upheaval Requires Third Party Risk Management Maturity
Keeping pace with supply chain regulation upheaval requires a disciplined approach to managing third party risk. Two years ago, a comprehensive benchmarking survey report on third party risk management (TPRM) practices concluded that “vendor risk management programs...
Closing the Virtual Assessments Skills Gap
This blogpost identifies the Virtual Assessments Skills needed in risk programs post-pandemic. Weeks after the World Health Organization designated COVID-19 as a pandemic, EY and the International Association of Privacy Professionals (IAPP) mobilized their research...
Shared Assessments Community For All – First Member Forum Call
In our first Member Forum Call of 2021, our Senior Advisors and Subject Matter Experts offered predictions for the months ahead along with compelling reasons to join the Shared Assessments community. (Member Forum Calls offer the opportunity to earn CPE credits while...
5 Focal Points for Virtual Assessments
While the use of virtual assessments was rising prior to 2020, that adoption accelerated beyond all expectations last year thanks to the COVID-driven work-from-home (WFM) transformation. This sudden shift caused numerous disruptions, including upending the risk...
How the Grinch Stole Christmas: SolarWinds and the Immediate Effect on Your Third Parties
Just when you could not wait to get through 2020 another big headache (perhaps “migraine” is more appropriate) hit the world, only this time in cyberspace. The cyber risk world was rocked recently with the news of a very sophisticated attack on SolarWinds, a much-used...
Cyber Attacks: Better Vendor Risk Management Practices in 2021
Recent Cyber Attacks Highlight Importance of Proactive and Preventive Measures to Counter Intrusions Through Your Supply Chain The Recent State Attack On US Companies and Government Agencies In what has been called one of the most sophisticated cyber attacks in recent...
Work From Anywhere (WFA) – Upstream Impact of Downstream Lapses
Work From Anywhere (WFA) practices: our thoughts about how to ameliorate the potential impacts From an HR Work From Anywhere (WFA) staffing standpoint new challenges have arisen that go far beyond meeting the typical onboarding controls. Organizations at all...