On Demand Events

Missed a recent webinar or Member Forum Call? Catch our previous virtual sessions here. We now offer CPEs from most of our on-demand offerings. To earn CPEs, please submit your information and codes in the form linked below. Note: our on-demand recordings work best when viewed in the Chrome browser.

All On-demand Events

What’s Next? TPRM in Incident Response and Management

What is the role of Third Party Risk Management during and after a widespread incident? How can TPRM programs best prepare for potential security incidents? When and how should TPRM programs conduct “ad hoc” vendor assessments? With whom should TPRM practitioners communicate during incidents? Join this webinar to explore recommended “best practices” for TPRM professionals during incident response and management situations.
Speakers:
  • Elizabeth Dunsmoor
    TPRM Principal, Shared Assessments
    Elizabeth Dunsmoor recently joined Shared Assessments as a TPRM Principal after 15 years as a TPRM practitioner. She has experience designing holistic programs and delivering assessment work within the cybersecurity, financial services, manufacturing, and healthcare sectors. With a proven ability to oversee and execute long-term operational strategies and methodologies for risk programs, Elizabeth is proficient in a variety of management actions including translating strategies into measurable plans, partnering with Procurement, corporate teams, and firm leaders to develop a pipeline of cross-functional leaders within the risk management function. She now provides training and guidance to business leaders to ensure understanding of program requirements, third-party capabilities, and performance expectations.
    View full bio
  • Rhonda Cook
    Senior Advisor, Shared Assessments
    Rhonda K.R. Cook is retired Chief Risk Officer for SEI Investments in Oaks, PA. She also served 4 years as Chair of the Investment Company Institute’s (ICI’s) Chief Risk Officer Committee. Over the course of her 25 years at SEI, Rhonda worked in a variety of client service, solution development, and risk management roles. She led projects in SEI’s Hong Kong and London offices, and she spent three years in New Delhi as SEI’s first Unit Leader, India. Rhonda has an M.B.A. from Northeastern University with a dual concentration in International Management and Innovation Entrepreneurship. Prior to joining SEI Investments, Rhonda graduated from the United States Military Academy at West Point; she served nine years as a Military Intelligence Officer in the U.S. Army, including multiple duty assignments in Europe, the Middle East, and Asia.
    View full bio
Register to Watch

AI & Emerging Technologies Committee Meeting – October 2024

This meeting covered Microsoft's nuclear-powered data center. We discussed NIST standards for post-quantum cryptography (PQC), emphasizing the transition from RSA to ML Chem and ML DSA for key encapsulation and digital signatures. The conversation highlighted the rapid advancements in AI and the need for agile governance to balance innovation and regulation. The discussion also touched on the lessons learned from Y2K, the importance of asset management, and the potential risks and benefits of AI, drawing parallels to past technological fears and uncertainties.

Healthcare Committee – October 2024

The Shared Assessments Healthcare Committee discussed the rapid evolution of technology, particularly AI, and its impact on third-party risk management. Key points included the importance of aligning risk assessments with contractual terms and business impact analysis. The committee members shared their assessment volumes, with some performing over 500 assessments annually. They also discussed the use of AI tools to streamline the assessment process and the challenges of managing large volumes of assessment questions. The meeting concluded with a review of the committee's achievements in 2024 and plans for 2025, emphasizing the need for continuous improvement and adaptation to emerging risks.

Global ESG TPRM Committee – October 2024

The Shared Assessments Global ESG TPRM Committee discussed the consideration of rebranding from ESG to Sustainability, with 62% of respondents supporting the change. Gary Roboff, Senior Advisor, Shared Assessments, discussed the EU's new regulation on deforestation, emphasizing its importance for global supply chains. Rhonda Cook, Senior Advisor, reviewed Noteworthy News on ESG &TPRM. A Deloitte survey revealed that 66% of private company leaders view climate change as a high or very high risk. The US Department of Commerce unveiled the SCALE tool to assess supply chain risks, though it is not publicly accessible. Members expressed interest in AI’s role in Sustainability as a topic for future discussion in the Committee. Links to suggested reading are included in the Master Deck, attached. The meeting concluded with a ShopTalk on integrating sustainability into third-party risk programs, highlighting practical steps and challenges.

Interagency Guidance: One Year Later

The Federal Reserve Board (the Board), Federal Deposit Insurance Corporation (FDIC), and Office of the Comptroller of the Currency (OCC) collectively introduced the Interagency Guidance on Third-Party Relationships: Risk Management. In June 2023, the guidance officially became effective – now, you are expected to comply! This session takes a closer look at what we've learned over the past year and provides a walkthrough of the NEW Shared Assessment Interagency Guidance Gap Analysis tool.
Speakers:
  • Jennifer Hancock
    Senior Advisor, Shared Assessments
    Jennifer Hancock is a third-party risk management professional with more than 20 years of experience in third-party risk management. As owner of Hancock Consulting LLC, a consultancy she founded to provide specialized advisory services, Ms. Hancock has been able to help organizations develop effective third-party risk management strategies and improve their overall resilience. Her expertise has been sought after by a wide range of clients across industries, and she is dedicated to helping organizations of all sizes manage their third-party risks effectively. As a thought leader in the field of third-party risk management, Ms. Hancock has been a featured speaker at numerous industry events and conferences. She is both a Certified Third-Party Risk Professional and a Certified Third-Party Risk Assessor (CTPRA).
    View full bio
  • Chris Johnson
    Senior Advisor, Shared Assessments
    Chris is a Senior Advisor to Shared Assessments where he focuses on healthcare, financial services, and emerging technologies. He has more than 25 years of experience helping clients effectively manage risk while exhibiting a passionate and dynamic leadership style. Prior to joining Shared Assessments, Chris led third party risk management and information technology initiatives at Bristol Myers Squibb, Bank of America, Merrill Lynch, KPMG, and Marriott International.
    View full bio
Register to Watch

Navigating the Complexities of Continuous Monitoring for Third-Party Risk

In today's interconnected business landscape, continuous monitoring has emerged as a critical strategy to ensure ongoing compliance, mitigate risks, and protect your organization. This webinar will provide an overview of continuous monitoring and best practices for implementation. In this webinar we will:

  • • Discuss the definition of continuous monitoring and its role in third-party risk management
  • • We will outline effective strategies for selecting, implementing, and maintaining a continuous monitoring program
  • • We will examine real-world case studies of organizations that have successfully leveraged continuous monitoring to mitigate risks.

Join us for this informative webinar and gain valuable insights into how to effectively manage third-party risk through continuous monitoring.

Speakers:
  • Elizabeth Dunsmoor
    TPRM Principal, Shared Assessments
    Elizabeth Dunsmoor recently joined Shared Assessments as a TPRM Principal after 15 years as a TPRM practitioner. She has experience designing holistic programs and delivering assessment work within the cybersecurity, financial services, manufacturing, and healthcare sectors. With a proven ability to oversee and execute long-term operational strategies and methodologies for risk programs, Elizabeth is proficient in a variety of management actions including translating strategies into measurable plans, partnering with Procurement, corporate teams, and firm leaders to develop a pipeline of cross-functional leaders within the risk management function. She now provides training and guidance to business leaders to ensure understanding of program requirements, third-party capabilities, and performance expectations.
    View full bio
  • Chris Johnson
    Senior Advisor, Shared Assessments
    Chris is a Senior Advisor to Shared Assessments where he focuses on healthcare, financial services, and emerging technologies. He has more than 25 years of experience helping clients effectively manage risk while exhibiting a passionate and dynamic leadership style. Prior to joining Shared Assessments, Chris led third party risk management and information technology initiatives at Bristol Myers Squibb, Bank of America, Merrill Lynch, KPMG, and Marriott International.
    View full bio
Register to Watch

Insurance Committee – September 2024

The Shared Assessments Insurance Committee discussed various topics, including the upcoming UK Summit on September 25, the 2025 US Summit in Fort Lauderdale, and the importance of AI in third-party risk management. They recapped data privacy, cybersecurity, liability, and generalized risks associated with autonomous vehicles (AVs). During open discussion on TPRM Insights, they highlighted the need for a risk appetite framework, the roles country risk and operational risk management play. The committee also explored the challenges of assessing vendors during proof-of-concept (POC) phases, suggesting early involvement and data minimization strategies. They noted the increasing number of third-party assessments, with some organizations performing over 500 annually, and the importance of continuous monitoring and cyber threat intelligence tools.

Financial Services Committee – September 2024

Jen Hancock highlighted the importance of the IAG guidance for navigating third-party risk and regulatory requirements. Chris Johnson introduced the Shared Assessments IAG gap analysis tool, which maps IAG to rescinded FRB, FDIC, and OCC guidance, helping identify new requirements and potential gaps. During the Open Mic for Members Participants noted the need to explore alternative methods of assurance / due diligence when direct assessments are not possible. The committee explored offshore delivery center controls. Feedback from organizations was they are implementing a combination of physical and technological controls for offshore delivery centers, rather than relying solely on physical security measures like "clean rooms” and a trend towards bringing more critical functions in-house or to captive centers to maintain tighter control over sensitive data and processes, rather than relying on third-party offshore providers. Lastly, participants highlighted the challenges of maintaining control environments and talent acquisition/retention for offshore locations, especially with the shift to more remote and hybrid work models during the pandemic.

September Member Forum Call – Contracting for Resiliency: Navigating AI, Regulatory Changes and Modern Practices

Join us for an engaging fireside chat as we delve into the evolving landscape of contracting. This webinar will explore the intersection of artificial intelligence (AI), business resiliency, and the latest regulatory changes. Our experts will discuss strategies for building business resiliency through robust contracting practices and adapting to recent regulatory shifts. Additionally, we’ll address the critical terms and conditions you should consider for vendors who are or will incorporate AI into their services. Don’t miss this opportunity to gain a deeper understanding of the future of contracting and how to leverage these advancements for your organization’s success.
Speakers:
  • Jennifer Hancock
    Senior Advisor, Shared Assessments
    Jennifer Hancock is a third-party risk management professional with more than 20 years of experience in third-party risk management. As owner of Hancock Consulting LLC, a consultancy she founded to provide specialized advisory services, Ms. Hancock has been able to help organizations develop effective third-party risk management strategies and improve their overall resilience. Her expertise has been sought after by a wide range of clients across industries, and she is dedicated to helping organizations of all sizes manage their third-party risks effectively. As a thought leader in the field of third-party risk management, Ms. Hancock has been a featured speaker at numerous industry events and conferences. She is both a Certified Third-Party Risk Professional and Certified Third-Party Risk Assessor (CTPRA).
    View full bio
  • Matt Johnson
    Partner, Bortstein Legal Group
    Matt Johnson is an accomplished technology, outsourcing, and commercial transactions attorney who is recognized for providing comprehensive strategic, legal, and commercial advice to his clients. Over the course of his career, Matt has drafted and negotiated services agreements, technology licenses, and procurement contracts ranging in value from thousands of dollars to five billion dollars. He has also worked with clients to develop complete sourcing strategies for their information technology operations and business processes, to prepare related RFPs, and to evaluate potential suppliers’ bids. His clients have included financial institutions, pharmaceutical companies, and technology companies; many of the transactions on which he has worked have involved the client’s global operations. Matt’s in-house and operations executive experiences give him a deeper understanding of practical and operational aspects of legal transactions, enhancing the value he offers his clients. Matt takes a broad approach to his work, drawing on his understanding of the business context of a transaction, to provide actionable legal and commercial advice to help clients of every size meet their objectives. Prior to joining BLG, Matt worked as in-house counsel at one of the nation’s largest home health and hospice companies and practiced law with two of the top outsourcing practice groups in the U.S. Before becoming a lawyer, Matt was an operations executive in the assisted living industry. He is a graduate of the College of William and Mary and George Washington University Law School.
    View full bio
Become a Member to Watch

AI & Emerging Technologies Committee – August 2024

The Shared Assessments AI & Emerging Technology Committee provided an update on Shared Assessments' AI initiatives, including the EU AI ACT, response to the Treasury's RFI and an upcoming AI briefing paper. The committee discussed potential cyber risks and concerns around autonomous vehicles (AVs), including data privacy, cross-border data sharing, and the lack of underwriting history compared to human-driven vehicles. Participants highlighted the need for regulatory frameworks and standards to address the risks of AVs, as the technology is rapidly evolving. Lastly, the committee had an in-depth discussion on the advancements in deep fake technology and the potential for misuse, including identity fraud in remote work situations. Participants emphasized the balance between convenience and security, and the need for new methods to verify identity in a remote workforce. The group also discussed the importance of educating customers and third parties about the risks of deep fakes. The next meeting is scheduled for October 22, 2024.
1 2 3 14