On Demand Events

In third party risk circles, successful partnerships are not just about cultivating outsourced relationships - successful partnerships are about internal relationships as well. The symbiotic relationship between the TPRM Program and Procurement helps drive value to the organization by weeding out prospects with poor cyber hygiene, enabling a quicker assessment turnaround time for legitimate vendors. In this session, third party risk professionals will discuss the successes and strategies they have employed to partner and support one another's efforts.

Note: CPE credits are not available for this session.

Join Shared Assessments CEO Cathy Allen and OneTrust CEO Kabir Barday as they discuss how Shared Assessments plans to grow as a part of OneTrust. The two will cover: - Why the market needs third-party risk standardization - Plans to make the SIG the global standard for third-party risk - How Shared Assessments will continue to operate as a vendor-neutral industry organization - The (bigger and better!) future of the Shared Assessments Summit, certifications, toolkits, and more

2020 was an unprecedented year for supply chain disruptions. And while we could not have foreseen the impact that the pandemic would have on our third-party relationships, there are several lessons to be learned to prevent similar failures from happening in the future. Join Shared Assessments and Prevalent as we examine the impact of the pandemic on each phase of the third-party lifecycle and review the top 5 lessons learned.

As COVID has highlighted supply chain challenges, concern has grown around how third party risk professionals are monitoring their downstream or “Nth” parties. This webinar offers an overview of the tools and techniques used by experienced risk professionals to measure and address the risks introduced by vendors of vendors. With practical ways to identify and manage fourth parties, you will get a better sense of your threat radar as you ensure your Nth parties are in alignment with your risk posture.

The recent SolarWinds Orion event points to the need for companies to establish a sound and repeatable process to deal with vulnerabilities as part of their third party risk strategy. In this fireside chat, Shared Assessments SMEs converse with industry TPR and security experts on how to prepare, execute, and report on the vulnerability status of third parties.

In business, you need good metrics in order tell the story of your program, both its successes and challenges. Metrics reporting on third-party management tell their story over time and can show evolution and give you confidence in its effectiveness. By tracking the correct metrics, you’ll be able to show the growth in raw data to the C-suite and Board of Directors.

Reporting drives critical business decisions. Presenting a cohesive report allows you to communicate to your direct management, C-suite, and Boardroom your programme’s value and maturity to the overall strategy of the organisation.

Today’s Third-Party Risk Management programs need to support requirements from the Chief Procurement Officer and the Chief Information Security Officer. Both individuals and their teams need to understand the risk that comes from vendors and their services, but for very different reasons.

Presented in partnership with ProcessUnity, learn how to balance your Third-Party Risk Management processes to support both procurement and information security priorities. Our team of experts will discuss how to implement an integrated approach that ties pre-contract due diligence with ongoing monitoring activities to create a mature, cross-functional program.

Attendees will learn how to:

Identify risk domains important to each functional group and incorporate into due diligence activities

Reduce onboarding cycle and improve assessment of vendor performance

Establish and track the maturity of programs while gaining understanding of day to day activities of TPRM

Integrate subject-matter experts into TPRM processes to improve assessment quality

Map vendor risk to internal risk and compliance frameworks

Two business functions with different charters and goals - join us for practical advice on how to bridge the gap with your Third-Party Risk program.

Organisations that make continuous monitoring of critical vendors a part of their holistic security and lifecycle-based risk management programme more frequently achieve business objectives. In this webinar, we will outline best practices to monitor critical vendors through continuous monitoring.

You and your vendors have likely migrated critical applications, customer data and work to the Cloud environment. During this webinar, we will discuss current threats, vulnerabilities and risks and the right questions to ask Cloud Security Providers regarding security, maintenance and resilience in order to keep the Cloud (and more importantly, your risk management) in check.