Upcoming Events

Mar 2024

Education

CTPRP Certification Course – In Person Summit 2024

Tuesday, March 19, 2024 | 8:00am - 6:00pm ET | The Westin Fort Lauderdale Beach Resort

The CTPRP designation is a professional credential designed to validate knowledge, experience, and proficiency in the design, structure, and implementation of a comprehensive Third-Party Risk Management (TPRM) Program. The program also incorporates best practices for TPRM program metrics, management reporting and evaluating the operational performance of the program. 12 Shared Assessments CPEs can be earned for completing the course.

Speakers:

Elizabeth Dunsmoor, TPRM Principal, Shared Assessments

Elizabeth joined Shared Assessments in May 2023 as a TPRM SME after 15 years as a TPRM practitioner. She has experience designing holistic programs and delivering assessment work within the cybersecurity, financial services, manufacturing, and healthcare sectors. Outside the office, Elizabeth takes full advantage of the beaches and outdoor activities enjoyed by so many Floridians.

Education

CTPRA Certification Course – In Person Summit 2024

Tuesday, March 19, 2024 | 8:00am - 6:00pm ET | The Westin Fort Lauderdale Beach Resort

The Certified Third Party Risk Assessor (CTPRA) designation is a professional credential that validates expertise, decision making and proficiency in third-party risk and controls evaluation. The program includes the processes for identifying, quantifying, and mitigating third-party risk within an organization’s TPRM program. 12 CPEs can be earned for completing the course.

Speakers:

Nasser Fattah , Senior Consultant, Shared Assessments

Nasser is passionate about risk management, including cybersecurity, IT risk and assurance, TPRM, and regulatory compliance. He brings 25+ years as a practitioner deploying and standardizing enterprise-wide risk programs to align and support business drivers, including digital transformation and new markets.

Conference

Summit 2024: Velocity of Change

Wednesday, March 20, 2024 | 8:00am - 5:00pm

The Shared Assessments Third-Party Risk Summit is the premier global, multi-industry event to shed light on processes, technologies, and efficiencies in third-party risk management. The Shared Assessments Annual Summit brings together leading experts in risk management to identify trends and share best practices.

Conference

Summit 2024: Velocity of Change

Thursday, March 21, 2024 | 8:00am - 5:00pm

The Shared Assessments Third-Party Risk Summit is the premier global, multi-industry event to shed light on processes, technologies, and efficiencies in third-party risk management. The Shared Assessments Annual Summit brings together leading experts in risk management to identify trends and share best practices.

Demo

Asia/Pacific: Fitting Together Inherent Risk & Vendor Questionnaires (TPSIRR + SIG)

Wednesday, March 27, 2024 | 3:00pm - 4:00pm SST/GMT+8

Join us for an introduction to the Standardized Information Gathering Questionnaire (SIG)...and learn how to tell which SIG to use with our Third Party Service Inherent Risk Rating Product (TPSIRR). Attendees of this session will:

  • Meet our newest solution for Determining Inherent Risk
  • Review current regulations covered by the SIG Questionnaire
  • Explore our up-to-date risk domains including AI and Supply Chain Risk
  • Learn to scope the SIG for specific Risks, Regulations, and Industries
  • (Please note this session is intended for those seeking to learn more about Shared Assessments' offerings - no CPEs offered).

    Speakers:

    David Addison, VP International Sales, Shared Assessments

    Based in London, passionate about working with companies to help minimise third party risk. Considerable experience in global market expansion with leading technology and across a wide range of sectors. David has lived and worked in several countries and been known to do a few marathons and triathlons.

    Sean Wright, International Sales Manager, Shared Assessments

    Based in the UK, working with companies and individuals globally, Sean is part of the International Sales Team for Shared Assessments. A natural partnership and relationship builder, Sean has a strong background in Data Privacy, Business Development....and Rugby!

    Demo

    UK/Europe: Fitting Together Inherent Risk & Vendor Questionnaires (TPSIRR + SIG)

    Wednesday, March 27, 2024 | 10:00am - 11:00am GMT

    Join us for an introduction to the Standardized Information Gathering Questionnaire (SIG)...and learn how to tell which SIG to use with our Third Party Service Inherent Risk Rating Product (TPSIRR). Attendees of this session will:

  • Meet our newest solution for Determining Inherent Risk
  • Review current regulations covered by the SIG Questionnaire
  • Explore our up-to-date risk domains including AI and Supply Chain Risk
  • Learn to scope the SIG for specific Risks, Regulations, and Industries
  • (Please note this session is intended for those seeking to learn more about Shared Assessments' offerings - no CPEs offered).

    Speakers:

    David Addison, VP International Sales, Shared Assessments

    Based in London, passionate about working with companies to help minimise third party risk. Considerable experience in global market expansion with leading technology and across a wide range of sectors. David has lived and worked in several countries and been known to do a few marathons and triathlons.

    Sean Wright, International Sales Manager, Shared Assessments

    Based in the UK, working with companies and individuals globally, Sean is part of the International Sales Team for Shared Assessments. A natural partnership and relationship builder, Sean has a strong background in Data Privacy, Business Development....and Rugby!

    Committee Meeting

    Procurement & Sourcing Committee

    Wednesday, March 27, 2024 | 11:00am-12:00pm ET

    The partnership between third-party risk management, procurement, and the business unit is paramount to allowing new and existing vendor relationships to operate and flourish in meeting an organization’s strategic goals. This committee identifies and documents best practices for achieving this partnership, centralizing a vendor inventory/registry, and streamlining the vendor relationship lifecycle.

    Committee Meeting

    TPRM Best Practices Committee

    Thursday, March 28, 2024 | 10:00am - 11:00am ET

    This committee examines the challenges organizations face in managing third-party risk and identifies existing and emerging best practices. Examples of previously examined topics include complex supply chains, fourth-party management, third-party contract development, risk rating, and assessment scoping.

    Committee Meeting

    Product Development Committee

    Thursday, March 28, 2024 | 12:00pm - 1:00pm ET

    The Products Development Committee is responsible for the management and development of existing and new content as well as the functionality of solutions in the Shared Assessments’ Product Suite: SIG, SCA, and VRMMM solutions. (Please note this committee is open to Shared Assessments members only.)

    Apr 2024

    Webinar

    4th & Nth Parties

    Wednesday, April 3, 2024 | 11:00am-12:00pm ET

    Evaluating appropriate ways to conduct risk assessments beyond your 3rd parties, by understanding your added exposures to 4th and Nth parties. Join us to uncover actionable insights for prioritizing critical suppliers and their subcontractors, mitigating potential disruptions, and adopting a pragmatic, risk-based approach to TPRM for your 4th and Nth parties. Gain clarity on where to focus your efforts amidst the vast network of dependencies, ensuring resilience in the face of evolving threats.

    Speakers:

    Andrew Moyad, CEO, Shared Assessments

    Andrew is the CEO of Shared Assessments, a global membership organization that supports hundreds of companies, risk programs, and thousands of associated third-party and other risk professionals. As a risk practitioner and executive, he has driven a culture of accountability and diligence in safeguarding information and other assets for organizations and their third parties. He has more than 25 years of experience in risk management and information security. Prior to joining Shared Assessments in 2022, Andrew served as Senior Vice President, Vendor Risk Management at Blackstone for four years, where he led a team of risk professionals responsible for overseeing all phases of the vendor lifecycle at the firm. Prior to Blackstone, he worked at BlackRock from 2010-18, where he first joined and then eventually led the firm’s Vendor Risk Management team. Before that, Andrew worked at Citigroup nine years, finishing as a Senior Vice President and Business Information Security Officer in Global Fixed Income, leading onsite third-party risk assessments across the United States, Europe, and Asia.

    Chad Freese, Lead Information Security Advisor, USAA

    Chad Freese is a distinguished Information Security Professional with over 20 years of experience, excelling as a Lead Information Security Advisor at USAA. In this role, he skillfully manages cloud security risk reviews and leads the development and integration of innovative risk assessment, security, and automation tools. His past achievements include several leadership roles on the Third-Party Cyber Risk Assessments team at USAA and serving as a Principal Cybersecurity Architect at Honeywell Aerospace, where he developed critical security architectures for the aviation industry and NASA.

    Education

    CTPRA Certification Course

    Wednesday, April 10, 2024 | 10:00am – 3:00pm ET

    This course is April 10-11th, 2024. The Certified Third Party Risk Assessor (CTPRA) designation is a professional credential that validates expertise, decision making and proficiency in third-party risk and controls evaluation. The program includes the processes for identifying, quantifying, and mitigating third-party risk within an organization’s TPRM program. 12 CPEs can be earned for completing the course.

    Speakers:

    Nasser Fattah, Senior Consultant, Shared Assessments

    Nasser is passionate about risk management, including cybersecurity, IT risk and assurance, TPRM, and regulatory compliance. He brings 25+ years as a practitioner deploying and standardizing enterprise-wide risk programs to align and support business drivers, including digital transformation and new markets.

    Demo

    North America: Using The SIG To Drive BIGGER + BETTER Efficiency In Risk Management

    Thursday, April 11, 2024 | 11:00am-12:00pm ET

    The Standardized Information Gathering (SIG) Questionnaire is the industry-standard product for scoping third-party risk assessments. With thousands of SIGs in use, 91% of users consider the SIG to be an effective part of due diligence. As a service provider, you can fill it in once and share with many. As an outsourcer, you can automate vendor response analysis by comparing actual responses to your "ideal" vendor response key. As a SIG subscriber, you now have access to Whistic’s Trust Catalog – where you can see who else uses the SIG and showcase your SIG. In this session, we will show you three key ways to boost risk management efficiency with the SIG. (Please note this session is intended for those seeking to learn more about Shared Assessments' offerings - no CPEs offered).

    Speakers:

    Katie Dorkings, Sales Director, Shared Assessments

    Based in North Carolina, Katie has a deep understanding of Shared Assessments' offerings and our clients' needs. Katie asks the right questions and connects our risk management community with true answers. Ask her anything about our products or membership; Katie will get back to you with a solid answer while balancing three spinning plates at the same time!

    Sabine Zimmer, VP, Sales and Marketing, Shared Assessments

    Education

    CTPRP Certification Course – In Person, Madrid

    Wednesday, April 17, 2024 | 8:00am – 6:00pm CET

    This course is in Partnership With GIA Global Group and Third-Party and Supply Chain Security Summit. The CTPRP designation is a professional credential designed to validate knowledge, experience, and proficiency in the design, structure, and implementation of a comprehensive Third-Party Risk Management (TPRM) Program. The program also incorporates best practices for TPRM program metrics, management reporting and evaluating the operational performance of the program. 12 Shared Assessments CPEs can be earned for completing the course.

    Speakers:

    Sean O'Brien, Managing Director, DVV Solutions

    Sean has 20+ years as a Cybersecurity, IT GRC, and TPRM leader. He is Managing Director of DVV Solutions, providing Managed and Consulting Third-Party Risk Management services in to the UK and EU marketplaces. Sean is an accredited Certified Third-Party Risk Professional (CTPRP) and a Certified Third-Party Risk Assessor (CTPRA).

    Demo

    Education Open House: Charting Your Course In Risk Management

    Thursday, April 18, 2024 | 11:00am-12:00pm ET

    Our Education Open House is a great opportunity to learn about trainings, certifications, and career paths in Third-Party Risk Management. Whether you are at the start of your TPRM career or are a seasoned professional, we will expand your awareness of educational and professional possibilities in risk management. Come with curiosity, leave with a clearer career path forward! In this session, we will:

  • Cover new content within our certifications
  • Identify who benefits from our trainings and certifications
  • Articulate career paths in TPRM
  • Introduce you to our NEW Job Board

    (Please note this session is intended for those seeking to learn more about Shared Assessments' offerings - no CPEs offered).

  • Webinar

    Navigating the Impact of DORA: What US Companies should know about the new EU DORA Regulation

    Tuesday, April 23, 2024 | 11:00am-12:00pm ET

    The Digital Operational Resilience Act (DORA) affects US-based organizations that provide financial services in the EU or offer third-party services to EU financial services companies. This session aims to provide an understanding of DORA, including its compliance expectations, and offers practical guidance on how US firms can prepare for DORA.

    Learning Objectives:

    • • Gain awareness of DORA and how it fits into the EU operational resilience framework
    • • Understand what impacts DORA will have on the 5 core service areas
    • • Gain context and background to make informed decisions on planning for DORA compliance

    Demo

    Asia/Pacific: Leveling Up With The Vendor Risk Management Maturity Model (VRMMM)

    Wednesday, April 24, 2024 | 3:00pm - 4:00pm SST/GMT+8

    How does your Risk Management Program measure up? Let’s find out. Meet the Vendor Risk Management Maturity Model, or VRMMM. The VRMMM evaluates third-party risk programs against a set of comprehensive best practices and industry benchmarks. Attendees of this session will learn to:

  • Benchmark against best practices
  • Identify comprehensive TPRM program elements
  • Understand key TPRM Processes
  • (Please note this session is intended for those seeking to learn more about Shared Assessments' offerings - no CPEs offered). (Please note this session is intended for those seeking to learn more about Shared Assessments' offerings - no CPEs offered).

    Speakers:

    David Addison, VP International Sales, Shared Assessments

    Based in London, passionate about working with companies to help minimise third party risk. Considerable experience in global market expansion with leading technology and across a wide range of sectors. David has lived and worked in several countries and been known to do a few marathons and triathlons.

    Sean Wright, International Sales Manager, Shared Assessments

    Based in the UK, working with companies and individuals globally, Sean is part of the International Sales Team for Shared Assessments. A natural partnership and relationship builder, Sean has a strong background in Data Privacy, Business Development....and Rugby!

    Demo

    UK/Europe: Leveling Up With The Vendor Risk Management Maturity Model (VRMMM)

    Wednesday, April 24, 2024 | 10:00am - 11:00am GMT

    How does your Risk Management Program measure up? Let’s find out. Meet the Vendor Risk Management Maturity Model, or VRMMM. The VRMMM evaluates third-party risk programs against a set of comprehensive best practices and industry benchmarks. Attendees of this session will learn to:

  • Benchmark against best practices
  • Identify comprehensive TPRM program elements
  • Understand key TPRM Processes
  • (Please note this session is intended for those seeking to learn more about Shared Assessments' offerings - no CPEs offered). (Please note this session is intended for those seeking to learn more about Shared Assessments' offerings - no CPEs offered).

    Speakers:

    David Addison, VP International Sales, Shared Assessments

    Based in London, passionate about working with companies to help minimise third party risk. Considerable experience in global market expansion with leading technology and across a wide range of sectors. David has lived and worked in several countries and been known to do a few marathons and triathlons.

    Sean Wright, International Sales Manager, Shared Assessments

    Based in the UK, working with companies and individuals globally, Sean is part of the International Sales Team for Shared Assessments. A natural partnership and relationship builder, Sean has a strong background in Data Privacy, Business Development....and Rugby!

    May 2024

    Education

    CTPRP Course

    Tuesday, May 21, 2024 | 10:00am–3:00pm ET

    This course runs May 21-22, 2024. The CTPRP designation is a professional credential designed to validate knowledge, experience, and proficiency in the design, structure, and implementation of a comprehensive Third-Party Risk Management (TPRM) Program. The program also incorporates best practices for TPRM program metrics, management reporting and evaluating the operational performance of the program. 12 Shared Assessments CPEs can be earned for completing the course.

    Speakers:

    Elizabeth Dunsmoor, TPRM Principal, Shared Assessments

    Elizabeth joined Shared Assessments in May 2023 as a TPRM SME after 15 years as a TPRM practitioner. She has experience designing holistic programs and delivering assessment work within the cybersecurity, financial services, manufacturing, and healthcare sectors. Outside the office, Elizabeth takes full advantage of the beaches and outdoor activities enjoyed by so many Floridians.

    Demo

    Asia/Pacific: Validation Of Third-Party Controls: See It To Believe It (SCA)

    Wednesday, May 22, 2024 | 3:00pm - 4:00pm SST/GMT+8

    Need to see it to believe it? Us too! The Standardized Control Assessment (SCA) Procedure Products from Shared Assessments is all about validating third-party controls. When scoped, the standardized set of assessment procedures (solutions, templates, checklists, guidelines) make an efficient way to assess service providers during onsite or virtual assessments or to audit your own systems. Join us for a walk through of the SCA and learn to:

  • Verify vendor compliance
  • Streamline control reviews
  • Maintain audit trail
  • (Please note this session is intended for those seeking to learn more about Shared Assessments' offerings - no CPEs offered).

    Speakers:

    David Addison, VP International Sales, Shared Assessments

    Based in London, passionate about working with companies to help minimise third party risk. Considerable experience in global market expansion with leading technology and across a wide range of sectors. David has lived and worked in several countries and been known to do a few marathons and triathlons.

    Sean Wright, International Sales Manager, Shared Assessments

    Based in the UK, working with companies and individuals globally, Sean is part of the International Sales Team for Shared Assessments. A natural partnership and relationship builder, Sean has a strong background in Data Privacy, Business Development....and Rugby!

    Demo

    UK/Europe: Validation Of Third-Party Controls: See It To Believe It (SCA)

    Wednesday, May 22, 2024 | 10:00am - 11:00am GMT

    Need to see it to believe it? Us too! The Standardized Control Assessment (SCA) Procedure Products from Shared Assessments is all about validating third-party controls. When scoped, the standardized set of assessment procedures (solutions, templates, checklists, guidelines) make an efficient way to assess service providers during onsite or virtual assessments or to audit your own systems. Join us for a walk through of the SCA and learn to:

  • Verify vendor compliance
  • Streamline control reviews
  • Maintain audit trail
  • (Please note this session is intended for those seeking to learn more about Shared Assessments' offerings - no CPEs offered). (Please note this session is intended for those seeking to learn more about Shared Assessments' offerings - no CPEs offered).

    Speakers:

    David Addison, VP International Sales, Shared Assessments

    Based in London, passionate about working with companies to help minimise third party risk. Considerable experience in global market expansion with leading technology and across a wide range of sectors. David has lived and worked in several countries and been known to do a few marathons and triathlons.

    Sean Wright, International Sales Manager, Shared Assessments

    Based in the UK, working with companies and individuals globally, Sean is part of the International Sales Team for Shared Assessments. A natural partnership and relationship builder, Sean has a strong background in Data Privacy, Business Development....and Rugby!

    Jun 2024

    Education

    CTPRP Course

    Tuesday, June 25, 2024 | 10:00am–3:00pm ET

    This course runs June 25-26, 2024. The CTPRP designation is a professional credential designed to validate knowledge, experience, and proficiency in the design, structure, and implementation of a comprehensive Third-Party Risk Management (TPRM) Program. The program also incorporates best practices for TPRM program metrics, management reporting and evaluating the operational performance of the program. 12 Shared Assessments CPEs can be earned for completing the course.