Authorities on Risk Assurance

The Shared Assessments Blog

Viewing Category: Data Protection

Third Party IoT Security: Interpreting Survey Results in the Context of a Shifting Security Paradigm

Published on July 17, 2017 By | Posted in: Cyber Attacks, Data Protection, Internet of Things (IoT), News, Third Party Oversight, Third Party Risk, Vendor Risk Managment, Vendor Security, Vendor Threat

Shared Assessment’s just published Ponemon research report The Internet of Things (IoT): A new Era of Third Party Risk provides a great snapshot of current IoT Risk management both within an organization’s four walls and with the third parties that so often support mission critical activities. Many of the report’s findings are troublesome: the lack […]

Comments Invited on Federal Banking Agency Enhanced Cyber Risk Management Standards

Published on October 19, 2016 By | Posted in: Cyber Risk, Data, Data Protection, OCC, Third Party Risk, Third Party Risk Management

The three federal banking regulatory agencies, the Federal Reserve Board, the Federal Deposit Insurance Corporation, and the Office of the Comptroller of the Currency, announced an advance notice of proposed rulemaking (ANPR) regarding enhanced cyber risk management standards for large and interconnected entities under their supervision, as well as those entities’ service providers. The standards […]

You Can’t Build a Robust Risk Management Program Without the Right Skills

Published on October 16, 2016 By | Posted in: Blog, Certified Third Party Risk Professional (CTPRP) program, Data, Data Protection, Education, Newsletter, Third Party Risk, Third Party Risk Management

The intricate third party risk management (TPRM) lifecycle requires coordinated and well-integrated knowledge from the Board and C-Suite through management and general staff, and extends throughout the relationship with third and fourth parties. The complex elements of a robust TPRM program involve effective design, control and monitoring of policies and processes, third party and system […]

Building A Robust Third Party Risk Management Program

Published on September 16, 2016 By | Posted in: Data Protection, Newsletter, Third Party Risk, Third Party Risk Management

Strong third party risk management is a growing requirement in the face of globalization and the increasing dependence on third parties that support core products and functions. Third party risk management (TPRM) revolves around the whole relationship lifecycle. This intricate lifecycle requires organizations to apply an integrated approach that expands the need for robust governance, […]

EU’s GDPR – Privacy as Best Practice

Published on August 31, 2016 By | Posted in: Brexit, Data, Data Protection, EU, General Data Protection Regulation (GDPR), Newsletter, Privacy

While the expanded regulations and new accountabilities of the European Union (EU) Regulation 2016/679, better known as the General Data Protection Regulation (GDPR) are daunting in scope, they do provide significant opportunities as well.1 For instance, while demonstrating privacy by design will be an ongoing organizational obligation, complying with the new regulations and then being […]

What the UK Brexit Vote Could Mean for Privacy

Published on July 21, 2016 By | Posted in: Brexit, Data, Data Protection, EU, Newsletter, Privacy

It has been a month since the UK voted to leave the EU and there is still plenty of uncertainty along the road ahead. However, when it comes to privacy law, there are some certainties. Ralph O’Brien, Principal Consultant EU at TRUSTe reviews the options. In the short term the UK Data Protection Act 1998 […]

Shared Assessments Licensee Pivot Point Security
Shared Assessments Licensee TD Ameritrade
Shared Assessments Licensee Power Advocate
Shared Assessments Logo pwc
Shared Assessments Licensee Rsam
Shared Assessments Licensee Protiviti
Shared Assessments Program licensee Churchill & Harriman logo
Shared Assessments Logo usbank
Shared Assessments Logo Iron Mountain
Shared Assessments Logo radian
Viewpoint Logo
Shared Assessments Licensee Bank of the West
Shared Assessments Logo Deluxe Corp
Shared Assessments Logo first data
Shared Assessments Logo Deloitte
Shared Assessments Logo dtcc
Shared Assessments Logo sei
Shared Assessments Licensee ZS logo
Shared Assessments Logo Bank Of New York Mellon
Shared Assessments Licensee ControlCase
Shared Assessments Licensee Lockpath
Shared Assessments Logo Ernst & Young
MetricStream logo