The Foundations Committee focuses on the fundamentals of third-party risk for those in the early stages of their careers, who have recently become practitioners, or who are considering a new career path in third-party risk.

This committee provides a platform for networking, experience sharing, and practical skill building. Members will delve into essential components needed for a strong TPRM program, collaborate to tackle challenges, and gain confidence in using products and solutions to more effectively identify and manage third-party risks.

Enhanced Learning and Skill Development: By sharing real-world practices and activities, Foundations Committee members will gain practical insights and hands-on experience, which can significantly improve their understanding and skills in practicing third-party risk management activities throughout the lifecycle.

- Prepare for success in the CTPRP and CTPRA course/exam.
- Prepare participants to engage more actively in other committees.
- Gain an understanding of how Shared Assessments products and content can assist in executing your TPRM activities.

Schedulers for this committee have been issued to committee members. If you are not part of this committee, please register your interest using the link below.

Transitioning from Excel to SIG Evolution (SIG EV)
What stays the same. What gets easier. What gets better.

For years, the SIG has been a foundational tool for third-party risk assessments, but as programs have grown more complex, so has the operational burden around managing assessments in Excel—version control, collaboration challenges, inconsistent outputs, and difficulty scaling across teams and vendors.

SIG Evolution (SIG EV) was built in direct response to those challenges. In this Product Forum, we’ll walk through what it means to transition from the traditional Excel-based SIG to SIG EV—and how to carry forward everything you already know into a more structured, consistent, and scalable experience.

Today’s regulatory environment is characterized by unprecedented crosscurrents, with jurisdictions sometimes moving in opposite directions. At the same time, organizational risk profiles are changing in concert with a risk environment that's evolving more rapidly than ever before. This session will explore: • How regulatory and risk environments are changing and the consequences of these changes • The heightened necessity for risk-focused organizational agility • Overcoming roadblocks to achieve more efficient and effective third-party and supply chain risk management

Improve your readiness for the Shared Assessments CTPRP exam by attending the CTPRP Open House, which will be led by Elizabeth Dunsmoor, TPRM Principal, Shared Assessments. This event will provide you with the chance to ask any questions related to the CTPRP course content as you prepare for the exam. This session will also include general exam readiness tips.

Improve your readiness for the Shared Assessments CTPRA exam by attending the CTPRA Open House, which will be led by Elizabeth Dunsmoor, TPRM Principal, Shared Assessments. This event will provide you with the chance to ask any questions related to the CTPRA course content as you prepare for the exam. This session will also include general exam readiness tips.

Third-party risk management is reaching a breaking point. Vendor ecosystems are expanding faster than risk teams can keep up, risk signals are fragmented, and traditional approaches struggle to deliver the speed, coverage, and defensibility organizations now require. In this session, we introduce Hyper TPRM — a modern approach to third-party risk management built for scale. Hyper TPRM moves beyond questionnaire-driven processes by combining data-first intelligence, workflow, community-powered exchange models, and AI acceleration, with human confirmation where it matters most. Join us to learn how organizations are evolving their TPRM programs to: • Prioritize vendors using dynamic, explainable risk insights • Leverage shared, validated assessment data to reduce friction for vendors and internal teams • Apply AI to accelerate assessments, validate evidence, and expand portfolio coverage • Shift from point-in-time reviews to continuous, risk-based monitoring If you’re looking to modernize your TPRM program without compromising rigor, this session will show how Hyper TPRM enables faster decisions, broader coverage, and greater confidence across the entire third-party lifecycle.

Incorporating industry standards, emerging risks, and regulations, our products are used by organizations worldwide for efficient and effective TPRM. From evaluating the maturity of an organization’s own risk management program to assessing vendors with the Standardized Information Gathering Questionnaire (SIG), learn about how our products accelerate risk management processes. (Please note this session is intended for those seeking to learn more about Shared Assessments' offerings - no CPEs offered).

Incorporating industry standards, emerging risks, and regulations, our products are used by organizations worldwide for efficient and effective TPRM. From evaluating the maturity of an organization’s own risk management program to assessing vendors with the Standardized Information Gathering Questionnaire (SIG), learn about how our products accelerate risk management processes. (Please note this session is intended for those seeking to learn more about Shared Assessments' offerings - no CPEs offered).

This in-person bootcamp is on Wednesday, April 22nd 2026, in Munich, Germany at the GIA Third Party & Supply Chain Cyber Security Summit. The Certified Third-Party Risk Professional (CTPRP) designation is a professional credential that validates expertise, decision-making, and proficiency in third-party risk and controls evaluation. The program covers the processes for identifying, quantifying, and mitigating third-party risk within an organization’s TPRM program.

This committee exchanges ideas and shares best practices related to the TPRM needs of the Healthcare sector. Areas of interest include, but are not limited to, regulatory requirements, emerging technology, program governance, and procurement.

Schedulers for this committee have been issued to committee members. If you are not part of this committee, please register your interest using the link below.