Kirsty Hart is an Enterprise Risk Management (ERM) specialist with over a decade of experience in Operational Risk in Financial Services, with deep expertise in IT and Cyber Risk Management and currently is Head of Risk and Compliance at Archer.

Prior to joining Archer, she spent five years as Head of Risk Reporting and Technology at a globally renowned Fintech, where she led the design and implementation of technology-enabled risk solutions and reporting frameworks at scale. Her experience also includes a strong focus on GRC technology, and how it can be leveraged to embed risk practices seamlessly into existing business processes.

Kirsty brings a practical lens to risk, with a strong belief that risk management should enable decision-making—not obstruct it. She is especially interested in evolving risk practices to keep pace with emerging threats and opportunities, including the role of AI and automation in enhancing ERM capabilities. Kirsty focuses on building risk frameworks that are pragmatic, forward-looking, and aligned with business strategy.

A firm advocate for demystifying risk, Kirsty focuses on accessibility, integration, and strategic alignment, ensuring risk supports the broader goals of the business while remaining responsive to a rapidly changing environment.

Chris McKillop serves as a GTM Sales Director at Responsive, where he focuses on advancing its Trust Center solution to help security professionals improve efficiency and collaboration through technology. He has extensive experience across cybersecurity, solutions engineering, and revenue enablement, with a primary focus on stakeholder assurance. Chris is an active member of the TPRM professional community and takes a people-first approach to solving challenges and driving success by sharing knowledge and fostering industry growth.

Andrew is CEO of Shared Assessments, a global membership organization supporting risk, compliance, cyber, and third-party professionals. With over 25 years in risk management, he champions cultures of accountability across organizations and their third parties. Prior to joining in 2022, Andrew led vendor risk programs at Blackstone, BlackRock, and Citigroup, with global experience spanning all phases of the vendor lifecycle.

Dov is a serial entrepreneur who’s been involved with third-party risk programs of every scale, up to the largest enterprises. He is known as a thought leader who explains complex problems and their solutions in plain English. Many in the industry think of him as the “third party therapist” due to Dov’s intuitive grasp of third party risk leaders’ challenges, and his entertaining and informative approach as a speaker and writer.

Alok is the Head of Third-Party Supplier Management at Liberty, enabling a collaborative framework to manage risks. With over 17 years of pure risk experience, he's well versed in Information and Cyber Security, Technology and Data, Operational Resilience, Third Party Risk, Operational and Enterprise Risk Management across lines of defence. He previously worked with the London Stock Exchange Group and HSBC.

Martin is a dedicated Information Security Professional with 20 years’ experience and is passionate about his subject matter. He specializes in implementing Cyber Security / Information Security frameworks and has previously worked in both the Fast-Moving Consumer Goods and Fintech industries.

Chris is a Senior Advisor to Shared Assessments where he focuses on healthcare, insurance, and artificial intelligence and emerging technology. He has more than 25 years of experience helping clients effectively manage risk while exhibiting a passionate and dynamic leadership style. Prior to joining Shared Assessments, Chris led third party risk management and information technology initiatives at Bristol Myers Squibb, Bank of America, Merrill Lynch, KPMG, and Marriott International.

Brian has automated risk and compliance for over 25 years, supporting hundreds of Fortune 500 and mid-market firms across all industries. Since 2011, Brian has focused on Third-Party Risk, Compliance and Performance Management, Master Data Management and Know your Customer (KYC) At Certa, Brian serves as Vice President, Head of North America.

Jennifer Hancock is a third-party risk management professional with more than 20 years of experience in third-party risk management. As owner of Hancock Consulting LLC, a consultancy she founded to provide specialized advisory services, Ms. Hancock has been able to help organizations develop effective third-party risk management strategies and improve their overall resilience. Her expertise has been sought after by a wide range of clients across industries, and she is dedicated to helping organizations of all sizes manage their third-party risks effectively. As a thought leader in the field of third-party risk management, Ms. Hancock has been a featured speaker at numerous industry events and conferences. She is both a Certified Third-Party Risk Professional and Certified Third-Party Risk Assessor (CTPRA).

Matt Johnson is an accomplished technology, outsourcing, and commercial transactions attorney who is recognized for providing comprehensive strategic, legal, and commercial advice to his clients. Over the course of his career, Matt has drafted and negotiated services agreements, technology licenses, and procurement contracts ranging in value from thousands of dollars to five billion dollars. He has also worked with clients to develop complete sourcing strategies for their information technology operations and business processes, to prepare related RFPs, and to evaluate potential suppliers’ bids. His clients have included financial institutions, pharmaceutical companies, and technology companies; many of the transactions on which he has worked have involved the client’s global operations. Matt’s in-house and operations executive experiences give him a deeper understanding of practical and operational aspects of legal transactions, enhancing the value he offers his clients. Matt takes a broad approach to his work, drawing on his understanding of the business context of a transaction, to provide actionable legal and commercial advice to help clients of every size meet their objectives. Prior to joining BLG, Matt worked as in-house counsel at one of the nation’s largest home health and hospice companies and practiced law with two of the top outsourcing practice groups in the U.S. Before becoming a lawyer, Matt was an operations executive in the assisted living industry. He is a graduate of the College of William and Mary and George Washington University Law School.

Chris is a Senior Advisor to Shared Assessments where he focuses on healthcare, financial services, and emerging technologies. He has more than 25 years of experience helping clients effectively manage risk while exhibiting a passionate and dynamic leadership style. Prior to joining Shared Assessments, Chris led third party risk management and information technology initiatives at Bristol Myers Squibb, Bank of America, Merrill Lynch, KPMG, and Marriott International.

John DiMaria; CSSBB, HISP, MHISP, AMBCI, CERP, is the Director of Operations Excellence and Research Fellow with the Cloud Security Alliance. He has 40 years of experience in Standards and management System Development, including Information Systems, Business Continuity, and Quality. John was one of the innovators and co-founders of the CSA STAR programs Open Certification Framework for cloud providers and developed the first certification scheme and process related to the NIST Cybersecurity Framework. John is a contributing author of the last three editions of the American Bar Association’s Cybersecurity Handbook, and a working group member, and a key contributor to the NIST Cybersecurity Framework and former contributing author and Steering Committee member of the Shared Assessments Program, where he dedicated significant time and effort to advancing the goals and initiatives of the program. John also serves as a leading expert as the BCI SIG Vice-Chair for Cyber Resilience, Working Group Chair for the IEEE P3454™, Standard for Cloud Computing - Operational Resilience – Framework, Member of the MSECB Impartiality, Ethics, and Appeals Committee, and Customer Experience Advisory Member with Lindenwood University, St. Louis, MO. He currently oversees the strategic execution of core operational functions, liaising across departments to provide tactical support and guidance, promoting operational efficiency and interdepartmental collaboration. Prior to joining CSA, DiMaria was the Global Product Champion for The British Standards Institution where he served as the global head of all information security, business continuity and cybersecurity product and process offerings as well as operations assessment scheme manager. He has experience working with both national and international environments.

Influential Risk Management Executive with proven success managing risk across multiple business lines while delivering against business objectives. Develop and maintain partnerships with internal/external business interests to identify key risk areas, mitigate resistance to change, and drive operational excellence. Trusted advisor to identify and resolve regulatory and business operational issues to deliver end-to-end solutions that drive business excellence while minimizing risk exposure.

Gary has nearly four decades of experience in financial services planning and management, working extensively on electronic payments, payments fraud, third-party risk management, privacy and information utilization, and business frameworks and standards for electronic commerce applications. His experience includes 25 years at JP Morgan Chase, where he retired as Senior Vice President of Electronic Commerce. At Shared Assessments, he lends this thought leadership to committees, research projects, and developing the Shared Assessments Framework.

Andrew is the CEO of Shared Assessments, a global membership organization that supports hundreds of companies, risk programs, and thousands of associated third-party and other risk professionals. As a risk practitioner and executive, he has driven a culture of accountability and diligence in safeguarding information and other assets for organizations and their third parties. He has more than 25 years of experience in risk management and information security.

Elizabeth Dunsmoor recently joined Shared Assessments as a TPRM Principal after 15 years as a TPRM practitioner. She has experience designing holistic programs and delivering assessment work within the cybersecurity, financial services, manufacturing, and healthcare sectors. With a proven ability to oversee and execute long-term operational strategies and methodologies for risk programs, Elizabeth is proficient in a variety of management actions including translating strategies into measurable plans, partnering with Procurement, corporate teams, and firm leaders to develop a pipeline of cross-functional leaders within the risk management function. She now provides training and guidance to business leaders to ensure understanding of program requirements, third-party capabilities, and performance expectations.

Eric manages strategic partnerships/alliances at RapidRatings and leads partner API integrations into procurement, supplier risk, governance risk & compliance platforms to benefit joint clients. Eric has over 20 years of experience in data, risk, and compliance, including companies such as Aetna, EDGAR Online, and Donnelley Financial Solutions. Eric just recently completed the CTPRP exam and is awaiting certification. Eric is actively involved with various working groups of shared assessments. He is the co-chair of the Global Best Practices Committee and is part of the US Steering Committee. He’s also part of the Solution Provider Council at the Institute of Supply Management (ISM) and sits on the ISM-NY board.

Chris is a Senior Advisor to Shared Assessments where he focuses on healthcare, financial services, and emerging technologies. He has more than 25 years of experience helping clients effectively manage risk while exhibiting a passionate and dynamic leadership style. Prior to joining Shared Assessments, Chris led third party risk management and information technology initiatives at Bristol Myers Squibb, Bank of America, Merrill Lynch, KPMG, and Marriott International.

Jennifer Hancock is a third-party risk management professional with more than 20 years of experience in third-party risk management. As owner of Hancock Consulting LLC, a consultancy she founded to provide specialized advisory services, Ms. Hancock has been able to help organizations develop effective third-party risk management strategies and improve their overall resilience. Her expertise has been sought after by a wide range of clients across industries, and she is dedicated to helping organizations of all sizes manage their third-party risks effectively. As a thought leader in the field of third-party risk management, Ms. Hancock has been a featured speaker at numerous industry events and conferences. She is both a Certified Third-Party Risk Professional and Certified Third-Party Risk Assessor (CTPRA).

Nasser is passionate about risk management, including cybersecurity, IT risk and assurance, TPRM, and regulatory compliance. He brings 25+ years as a practitioner deploying and standardizing enterprise-wide risk programs to align and support business drivers, including digital transformation and new markets.