On Demand Events

Missed a recent webinar or Member Forum Call? Catch our previous virtual sessions here. We now offer CPEs from most of our on-demand offerings. To earn CPEs, please submit your information and codes in the form linked below. Note: our on-demand recordings work best when viewed in the Chrome browser.

Webinar

Get Off the Assessment Treadmill. Take a Data-First, Questionnaire-Second Approach to TPRM

The work never ends. Every year, we onboard more third parties. And every year, our assessment workload gets worse. More resources to help? Not going to happen. Sound familiar? You’re not alone. We have been at this process for years, but it continues to get worse for your team and the people in your company that rely on your third parties.

It doesn't have to be that way. It's time the flip the script and cut back on assessment questionnaires. Join us for a live webcast to learn how the newest risk exchange models are eliminating 80% of questionnaire requests with data. Our team of experts will outline how to:

- Instantly perform inherent risk analysis on your entire vendor portfolio
- Incorporate real-time risk data into your process to reduce questionnaire requests
- Map your questionnaire and controls to industry-standard frameworks or threat profiles to get the information you need with fewer questions
- Access assessment data on large, hard-to-assess third parties that don't respond to you
- Monitor 100% of your portfolio -- not just your critical vendors

TPRM doesn't have to be the most painful process in your company. Join us and start your program's evolution.
Speakers:
  • Elizabeth Dunsmoor
    TPRM Principal, Shared Assessments
    Elizabeth Dunsmoor recently joined Shared Assessments as a TPRM Principal after 15 years as a TPRM practitioner. She has experience designing holistic programs and delivering assessment work within the cybersecurity, financial services, manufacturing, and healthcare sectors. With a proven ability to oversee and execute long-term operational strategies and methodologies for risk programs, Elizabeth is proficient in a variety of management actions including translating strategies into measurable plans, partnering with Procurement, corporate teams, and firm leaders to develop a pipeline of cross-functional leaders within the risk management function. She now provides training and guidance to business leaders to ensure understanding of program requirements, third-party capabilities, and performance expectations.
    View full bio
  • Sophia Corsetti
    Product Marketing Manager , ProcessUnity
    Sophia Corsetti is a Third-Party Risk Management Product Manager at ProcessUnity, where she combines her knowledge of industry best practices with a deep understanding of the ProcessUnity platform. She works closely with CISOs and CPOs to help them streamline risk management processes and get the most out of their solutions. Sophia’s insights make her a trusted advisor for organizations looking to strengthen their risk management programs.
    View full bio
Register to Watch

February 2025 Member Forum Call – The Evolving Role of Critical Third Parties: 2025 Survey Results and TPRM Solutions

Explore the latest findings from the 2025 Critical Third-Party Survey as panelists analyze key trends and compare them with the 2023 results. This session provides an updated perspective on critical third parties, highlighting the impact of increasing global regulatory scrutiny. Join this engaging and interactive discussion where experts will bridge the gap between identifying and quantifying critical third parties and integrating these insights into TPRM processes. Topics will include defining inherent risk criteria, employing effective risk tiering techniques and models, and leveraging tools such as Shared Assessments' TPSIRR framework. Gain practical strategies to enhance your organization's approach to managing critical third parties in today’s dynamic risk landscape.
Speakers:
  • Chris Johnson
    Senior Advisor, Shared Assessments
  • Jen Hancock
    Senior Advisor, Shared Assessments
  • John Bree
    Chief Risk Officer & Chief Evangelist, Supply Wisdom
Register to Watch

The ROI of TPRM: Creating Business Value in Your Vendor Risk Program

Modern third-party risk management (TPRM) programs do more than just mitigate risk or check a compliance box—they create measurable business value. But many TPRM teams are set up to fail with a reactive, resource-intensive approach. In this session, you’ll learn how to flip that script with streamlined, value-generating TPRM that supports business resilience and growth. We’ll explore how:

- AI-powered, automated vendor risk assessments make your team more effective at identifying and mitigating risk in a fraction of the time
- Modern TPRM moves away from lengthy questionnaires toward insight-rich, on-demand security data
- Greater efficiency leaves you with extra resources that can be re-allocated to business-critical tasks

If you’ve ever been called a “cost center” or “necessary evil” (or if you just want more time back in your day), this is the session for you!
Speakers:
  • Elizabeth Dunsmoor
    TPRM Principal, Shared Assessments
    Elizabeth Dunsmoor recently joined Shared Assessments as a TPRM Principal after 15 years as a TPRM practitioner. She has experience designing holistic programs and delivering assessment work within the cybersecurity, financial services, manufacturing, and healthcare sectors. With a proven ability to oversee and execute long-term operational strategies and methodologies for risk programs, Elizabeth is proficient in a variety of management actions including translating strategies into measurable plans, partnering with Procurement, corporate teams, and firm leaders to develop a pipeline of cross-functional leaders within the risk management function. She now provides training and guidance to business leaders to ensure understanding of program requirements, third-party capabilities, and performance expectations.
    View full bio
  • John Finizio
    Director, Technical Programs, Whistic
    John, a seasoned professional with 20 years of experience in Security, Audit, Third Party Risk, and Product, serves as VP, Security, Risk and Compliance at Whistic. In this role, he safeguards Whistic's assets, data, and systems from cybersecurity threats and works to improve the risk and compliance posture at Whistic. As a dedicated thought leader, John contributes to shaping the future of Third Party Risk Management (TPRM) and is currently serving a second term on the Shared Assessments US Steering Committee, bringing a wealth of expertise.
    View full bio
  • Lance Mueller
    CEO, Venseca
    Lance is the Chief Executive Officer of Venseca, a world leader in Third-party Risk, renowned for its innovative solutions and expert-driven approach to communicating the thoroughness of an organization’s InfoSec program. Lance has established himself as a visionary leader committed to advancing the field and protecting organizations from relational threats. Under Lance's leadership, Venseca has partnered with hundreds of K12 and Higher Education institutions to provide data and services to solve third-party risk challenges. His strategic vision and hands-on approach have been pivotal in driving the company’s growth and maintaining its reputation as a trusted business advisor.
    View full bio
Register to Watch

Navigating AI Adoption: Governance, Risk, and Talent

This session will explore how companies are navigating the challenges of AI adoption, evolving service models, and addressing new risks. The discussion will emphasize the importance of strong governance, talent management, and the strategic integration of AI, digital engineering, and cloud solutions to ensure ongoing competitiveness in a rapidly changing market. We will also share an update what we are seeing from our clients regarding the testing and implementation of AI models and the governance structures that our enterprise clients are deploying. Key discussions will include:
- Evolving Governance: How AI and digital transformation are reshaping governance practices across industries.
- Risk Management: Identifying and mitigating the unique risks associated with AI deployment.
- Future Workforce: Developing strategies to prepare and manage talent in a tech-driven world.
Speakers:
  • Andrew Moyad
    CEO, Shared Assessments
    Andrew is the CEO of Shared Assessments, a global membership organization that supports hundreds of companies, risk programs, and thousands of associated third-party and other risk professionals. As a risk practitioner and executive, he has driven a culture of accountability and diligence in safeguarding information and other assets for organizations and their third parties. He has more than 25 years of experience in risk management and information security.
    View full bio
  • Brian Smith
    Managing Director, Alvarez & Marsal
    Brian Smith is a Managing Director with Alvarez & Marsal based in New York. He has more than 30 years experience as an operational executive and advisor relating to business process and technology globalization and outsourcing, technology management and restructuring. Since joining A&M, Mr. Smith has led engagements focused on the design and implementation of technology and organizational solutions, software acquisition, contracting and third-party risk management. Before joining A&M in 2014 he was a general manager in the financial services group at Computer Science Corporation, responsible for oversight of global client relationships for the banking and capital markets sector. Earlier, Mr. Smith spent seven years with TPI, a global sourcing advisory firm, leading the Business Process Outsourcing and Service Management practices. Previously he held technology and operational management roles at the Citibank Private Bank and at American Express Bank in the UK, Switzerland and the USA.
    View full bio
  • Akiba Stern
    Partner, Loeb & Loeb LLP
    Akiba Stern has advised clients for over 30 years in all aspects of business law, both as in-house counsel and at law firms. Akiba concentrates his practice on outsourcing, technology-enabled business transactions, e-commerce, technology transfers, licensing, intellectual property and joint ventures; including transactions involving the commercialization of intellectual property. Akiba is recognized as a Hall of Fame Leading Lawyer in Outsourcing by The Legal 500 and as a Band 1 lawyer in Technology and Outsourcing – New York by Chambers.
    View full bio
Register to Watch

AI For TPRM: Rocketing TPRM To MARS

Join Shared Assessments and Mirato as we explore how MARS Incorporated leverages AI to drive impactful efficiencies in their risk management processes. As a global snacking, petcare, food & nutrition company, operating in over 80 countries with a diverse product range, MARS skilfully navigates the complexities of supply chains and vendor networks. By utilizing the Mirato Questionnaire Killer™ (MQK), MARS has significantly reduced assessment time while increasing accuracy. This session offers a real-world AI risk management use case—bring your own Skittles, M&M's, or Snickers!
Speakers:
  • Andrew Moyad
    CEO, Shared Assessments
    Andrew is the CEO of Shared Assessments, a global membership organization that supports hundreds of companies, risk programs, and thousands of associated third-party and other risk professionals. As a risk practitioner and executive, he has driven a culture of accountability and diligence in safeguarding information and other assets for organizations and their third parties. He has more than 25 years of experience in risk management and information security.
    View full bio
  • Etai Hochman
    CTO & Co-Founder, Mirato
    Industry recognized technology and innovation leader Etai Hochman is successfully breaking norms across a wide range of industries, from improving academic education for gifted children in mathematics (Bar Ilan University Israel) to optimizing the radio networks of the world’s largest mobile operators (Intucell acquired by Cisco) to unlocking a new breed of cyber insurance for enterprises (Founder of At-Bay). While still in high school, Etai earned a B.Sc. in mathematics from Bar-Ilan University before enlisting to serve in the Office of the Prime Minister of Israel, where he worked for six years creating a new breed of strategic cyber infrastructure that unlocked new operational capabilities for Israel. During his tenure there, he also completed an MBA from Tel Aviv University.
    View full bio
  • Roberto Barros
    Infosec Assurance & Compliance Senior Lead, Mars Inc
    Roberto is a vendor cyber risk management Senior Lead at Mars, helping reduce risk introduced by vendors to the organization. An IT professional with over 20 years of experience in the CPG and services industries, he is a certified Scrum Master and expert in Agile methodologies, with a strong focus on the cybersecurity area.
    View full bio
Register to Watch

Third-Party Risk SOS: Accelerating Your Response to Security Events in the Supply Chain

If the recent CrowdStrike incident taught us anything it's that we need to drastically change how we assess third-party service providers in the face of emerging threats and vulnerabilities. There are too many vendors to assess, compounded by the increasing volume of threats we face each year. On a normal day, TPRM teams already have too much to do. When an incident like this occurs, they need to stop what they're doing and conduct an emergency assessment -- an ugly process that overburdens companies and their vendors, and typically takes weeks, if not months. As a result, companies may remain exposed to vulnerabilities that could eventually result in loss. But does it really have to be that way? Join third party risk experts from ProcessUnity and RiskRecon to discuss best practices and emerging technologies for: • Improving monitoring for critical vulnerabilities to determine which ones matter • Identifying, Prioritizing and Assessing affected third parties in real-time • Incorporating objective data into the decision-making processes • Streamlining workflows and scaling your operations
Speakers:
  • Sophia Corsetti
    Product Marketing Manager, ProcessUnity
    Sophia is a third-party risk management product specialist at ProcessUnity. Sophia conducts thorough research on industry best practices and has in-depth product knowledge of how CISOs and CPOs use the ProcessUnity platform.
    View full bio
  • Jon Ehret
    Vice President Global Cybersecurity, Mastercard
    Jon Ehret is Vice President of Global Cybersecurity for Mastercard.  Jon brings 20+ years of experience in technology and risk, including extensive experience building, maturing and running third party risk programs in both the finance and healthcare industries. Before joining Mastercard, Jon built and lead the third-party risk program for BlueCross BlueShield of WNY and also served as President and Co-founder of the Third Party Risk Association, an international professional association of third party risk practitioners and vendors.
    View full bio
  • Andrew Moyad
    CEO, Shared Assessments
    Andrew is the CEO of Shared Assessments, a global membership organization that supports hundreds of companies, risk programs, and thousands of associated third-party and other risk professionals. As a risk practitioner and executive, he has driven a culture of accountability and diligence in safeguarding information and other assets for organizations and their third parties. He has more than 25 years of experience in risk management and information security.
    View full bio
Register to Watch

What’s Next? TPRM in Incident Response and Management

What is the role of Third Party Risk Management during and after a widespread incident? How can TPRM programs best prepare for potential security incidents? When and how should TPRM programs conduct “ad hoc” vendor assessments? With whom should TPRM practitioners communicate during incidents? Join this webinar to explore recommended “best practices” for TPRM professionals during incident response and management situations.
Speakers:
  • Elizabeth Dunsmoor
    TPRM Principal, Shared Assessments
    Elizabeth Dunsmoor recently joined Shared Assessments as a TPRM Principal after 15 years as a TPRM practitioner. She has experience designing holistic programs and delivering assessment work within the cybersecurity, financial services, manufacturing, and healthcare sectors. With a proven ability to oversee and execute long-term operational strategies and methodologies for risk programs, Elizabeth is proficient in a variety of management actions including translating strategies into measurable plans, partnering with Procurement, corporate teams, and firm leaders to develop a pipeline of cross-functional leaders within the risk management function. She now provides training and guidance to business leaders to ensure understanding of program requirements, third-party capabilities, and performance expectations.
    View full bio
  • Rhonda Cook
    Senior Advisor, Shared Assessments
    Rhonda K.R. Cook is retired Chief Risk Officer for SEI Investments in Oaks, PA. She also served 4 years as Chair of the Investment Company Institute’s (ICI’s) Chief Risk Officer Committee. Over the course of her 25 years at SEI, Rhonda worked in a variety of client service, solution development, and risk management roles. She led projects in SEI’s Hong Kong and London offices, and she spent three years in New Delhi as SEI’s first Unit Leader, India. Rhonda has an M.B.A. from Northeastern University with a dual concentration in International Management and Innovation Entrepreneurship. Prior to joining SEI Investments, Rhonda graduated from the United States Military Academy at West Point; she served nine years as a Military Intelligence Officer in the U.S. Army, including multiple duty assignments in Europe, the Middle East, and Asia.
    View full bio
Register to Watch

October Member Forum Call: Best Practices of Governance in Third Party Risk Management Programs

Strong program governance helps foster efficient use of resources, greater transparency, and an environment of trust. This webinar will highlight best practices in governance of Third Party Risk Management (TPRM). During this webinar, we will discuss governance goals and objectives, reporting on key indicators, and program evaluation. This member forum call will be open to nonmembers.
Speakers:
  • Bob Jones
    Senior Advisor, Shared Assessments
    Bob is deeply committed to contributing to the well-being of the financial services community. A well-known and sought-after expert in risk management strategy, he has 50 years of experience leading fraud risk management and risk management strategy. In addition to bringing unique experience as a consultant, educator and expert witness to Shared Assessments, he also serves as the principal of RW Jones Associates, LLC and is Adjunct Professor Emeritus of Economic crime at Utica College, where he taught in the school’s M.B.A. in Economic Crime and Fraud Management program. His articles have appeared in the RMA Journal and the Journal of Economic Crime Management.
    View full bio
  • Rhonda Cook
    Senior Advisor, Shared Assessments
    Rhonda K.R. Cook is retired Chief Risk Officer for SEI Investments in Oaks, PA. She also served 4 years as Chair of the Investment Company Institute’s (ICI’s) Chief Risk Officer Committee. Over the course of her 25 years at SEI, Rhonda worked in a variety of client service, solution development, and risk management roles. She led projects in SEI’s Hong Kong and London offices, and she spent three years in New Delhi as SEI’s first Unit Leader, India. Rhonda has an M.B.A. from Northeastern University with a dual concentration in International Management and Innovation Entrepreneurship. Prior to joining SEI Investments, Rhonda graduated from the United States Military Academy at West Point; she served nine years as a Military Intelligence Officer in the U.S. Army, including multiple duty assignments in Europe, the Middle East, and Asia.
    View full bio
  • Joe Prochaska Jr.
    Board Member, Synovus Financial Corporation
    Joseph (“Joe”) J. Prochaska Jr is an experienced board member and strategic financial executive with over 30 years helping some of the world’s largest insurance related companies improve profits, navigate transformation activities including mergers and acquisitions and enhance financial systems. Joe has an extensive background in accounting, financial reporting, financial systems, and risk evaluation. He also brings deep information technology experience including enterprise-wide financial and operating systems and cyber security. Joe is designated as a Qualified Financial Expert under Sarbanes-Oxley and serves as an independent director and Qualified Risk Expert on the Synovus Financial Corp. Board.
    View full bio
  • Falicia Foster-Cruz
    CISA, CRVPM, CTPRP | MANAGER – THIRD PARTY RISK MANAGEMENT, Iron Mountain
    Based in the US with over 15 years of experience in risk and compliance, Falicia manages Iron Mountain's global third party risk management program and leads a team of 7 analysts from around the world. Falicia has a background in Retail, Hospitality, Finance, Health Services, Compliance and Government, has a bachelors in business administration as well as the CISA, CTPRP, and CRVPM certifications. Falicia tends to describe herself as a "Jane of all Trades" which comes in handy with the wide field of focus of Third Party Risk.
    View full bio
Register to Watch

Interagency Guidance: One Year Later

The Federal Reserve Board (the Board), Federal Deposit Insurance Corporation (FDIC), and Office of the Comptroller of the Currency (OCC) collectively introduced the Interagency Guidance on Third-Party Relationships: Risk Management. In June 2023, the guidance officially became effective – now, you are expected to comply! This session takes a closer look at what we've learned over the past year and provides a walkthrough of the NEW Shared Assessment Interagency Guidance Gap Analysis tool.
Speakers:
  • Jennifer Hancock
    Senior Advisor, Shared Assessments
    Jennifer Hancock is a third-party risk management professional with more than 20 years of experience in third-party risk management. As owner of Hancock Consulting LLC, a consultancy she founded to provide specialized advisory services, Ms. Hancock has been able to help organizations develop effective third-party risk management strategies and improve their overall resilience. Her expertise has been sought after by a wide range of clients across industries, and she is dedicated to helping organizations of all sizes manage their third-party risks effectively. As a thought leader in the field of third-party risk management, Ms. Hancock has been a featured speaker at numerous industry events and conferences. She is both a Certified Third-Party Risk Professional and a Certified Third-Party Risk Assessor (CTPRA).
    View full bio
  • Chris Johnson
    Senior Advisor, Shared Assessments
    Chris is a Senior Advisor to Shared Assessments where he focuses on healthcare, financial services, and emerging technologies. He has more than 25 years of experience helping clients effectively manage risk while exhibiting a passionate and dynamic leadership style. Prior to joining Shared Assessments, Chris led third party risk management and information technology initiatives at Bristol Myers Squibb, Bank of America, Merrill Lynch, KPMG, and Marriott International.
    View full bio
Register to Watch

Navigating the Complexities of Continuous Monitoring for Third-Party Risk

In today's interconnected business landscape, continuous monitoring has emerged as a critical strategy to ensure ongoing compliance, mitigate risks, and protect your organization. This webinar will provide an overview of continuous monitoring and best practices for implementation. In this webinar we will:

  • • Discuss the definition of continuous monitoring and its role in third-party risk management
  • • We will outline effective strategies for selecting, implementing, and maintaining a continuous monitoring program• We will examine real-world case studies of organizations that have successfully leveraged continuous monitoring to mitigate risks.

Join us for this informative webinar and gain valuable insights into how to effectively manage third-party risk through continuous monitoring.

Speakers:
  • Elizabeth Dunsmoor
    TPRM Principal, Shared Assessments
    Elizabeth Dunsmoor recently joined Shared Assessments as a TPRM Principal after 15 years as a TPRM practitioner. She has experience designing holistic programs and delivering assessment work within the cybersecurity, financial services, manufacturing, and healthcare sectors. With a proven ability to oversee and execute long-term operational strategies and methodologies for risk programs, Elizabeth is proficient in a variety of management actions including translating strategies into measurable plans, partnering with Procurement, corporate teams, and firm leaders to develop a pipeline of cross-functional leaders within the risk management function. She now provides training and guidance to business leaders to ensure understanding of program requirements, third-party capabilities, and performance expectations.
    View full bio
  • Chris Johnson
    Senior Advisor, Shared Assessments
    Chris is a Senior Advisor to Shared Assessments where he focuses on healthcare, financial services, and emerging technologies. He has more than 25 years of experience helping clients effectively manage risk while exhibiting a passionate and dynamic leadership style. Prior to joining Shared Assessments, Chris led third party risk management and information technology initiatives at Bristol Myers Squibb, Bank of America, Merrill Lynch, KPMG, and Marriott International.
    View full bio
Register to Watch
1 2 3 9