Blog

Explore our blogs for the latest insights, tips, and best practices in third-party risk management. Stay informed and protect your organization by navigating the complexities of third-party relationships with confidence. Read on to enhance your risk management strategy!

Best Practices

Third Party Onsite Assessment Best Practices: Practitioner Guide

Shared Assessments is providing this updated onsite assessment guide in response to the call from CISOs and other practitioners to remedy the lack of standardization across assessments within sectors, as well as cross-industry (RSAC-ESAF, 2023; Shared Assessments, 2023). Assessors and...

Read More
Shared Assessments

2023: Risk Management Wrapped

This blogpost is a celebration of the risk management moments that have defined our year. Shared Assessments’ community participation contributes significantly to being the trusted source in Third Party Risk Management. We are thankful that you have been here with us to...

Read More
Tools and Products

Product Release 2024: A Charlie Brown Thanksgiving

Introduction: “What if today, we were just grateful for everything?” Happy week of Thanksgiving! Charlie Brown, beloved comic strip poet and philosopher, probably said it best: "What if today, we were just grateful for everything?" With a theme of gratitude,...

Read More
Tools and Products

Unmasking Inherent Risk: Setting The Stage For Due Diligence

Monster mashes, zombie jamborees, and ghostly galas: Happy Halloween! While we know you will be dancing to Thriller in a graveyard tonight, do not forget the calculated dance of risk management. Organizations are tasked with a monumental mission in the...

Read More
Shared Assessments

Trust Network Pilot Project

Introduction Shared Assessments is very pleased to launch our first-ever “Trust Network” pilot project this week with our partner Whistic. This project is intended to connect the efficiencies of Whistic’s Trust Center with the diversity of Shared Assessments’ third-party risk management...

Read More
Best Practices

Reputational Risk Management Framework: Identifying, Assessing, Reporting, Mitigating, and Monitoring

An organization that actively builds and maintains a positive reputation gains a competitive advantage and improves its credibility if an event occurs that impacts that reputation. Effective reputational risk management is crucial for organizations of all sizes and industries to...

Read More
Risk Landscape

Data Privacy Roadmap: Where We Are, Where We’re Headed, How We Can Get There

Since the introduction of the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA), data privacy has become an essential aspect of Third Party Risk Management (TPRM). With constant changes in data privacy regulations, staying up-to-date with...

Read More
Framework, Industry Guidance, and Regulations

New Integrated Third-Party Risk Management Guidance from the OCC, Federal Reserve, and FDIC

Regulators have developed “principles-based guidance that provides a flexible, risk-based approach to third-party risk management that can be adjusted to the unique circumstances of each third-party relationship.” On June 6th, less than 20 months after comments closed, the Federal Reserve,...

Read More
Best Practices

Third Party Focused Ransomware Strategy: An Enterprise-Wide Collaborative Strategy Guide for TPRM Professionals

While excellent ransomware guides and tools exist from various sources, our new guide (Third Party Focused Ransomware Strategy: An Enterprise-Wide Collaborative Strategy Guide for TPRM Professionals) and the related resources referenced throughout provide a Third Party Risk Management focused approach. The...

Read More
Education

TPRM Fundamentals: Putting On Risk Management Shoes

“Put yourself in their shoes…” is a commonplace reminder to practice empathy. You must put on someone else’s shoes (and then walk a mile) to understand how someone thinks and to gain a sense of the landscape in which this...

Read More
Framework, Industry Guidance, and Regulations

Coherent Corporate Sustainability Due Diligence and Reporting Frameworks Are Arriving In the EU…

and...Third Party Risk Managers Everywhere Should Pay Attention! Third-party risk managers should be paying attention to important ESG regulatory developments in the European Union, where two pieces of regulation became effective within the last month and one more may be...

Read More
Cybersecurity, Risk Landscape

Identity Theft Awareness: Who Are You?

Have you discovered who you truly are? Did you take the Myers-Briggs? Do you know your sign? Abilities, attributes, and astrology be darned - to an identity thief, you just represent a unique set of numbers and the opportunity to...

Read More
1 2 3 4 5 52