On Demand Events

Missed a recent webinar or Member Forum Call? Catch our previous virtual sessions here. We now offer CPEs from most of our on-demand offerings. To earn CPEs, please submit your information and codes in the form linked below. Note: our on-demand recordings work best when viewed in the Chrome browser.

All On-demand Events

Webinar

Unveiling the Hidden Risks in Third-Party Risk Management

This webinar aims to illuminate the often-overlooked risks in third-party risk management (TPRM), highlighted by high-profile incidents like Log4j, SolarWinds, and the more recent XZ-Utils Backdoor.
Speakers:
  • Bob Maley
    Chief Security Officer, Black Kite
    Bob Maley, Inventor, CISO, Author, Futurist, and OODA Loop fanatic, is currently the Chief Security Officer at Black Kite, a technology company that specializes in cybersecurity intelligence gathering and analysis. Before, he was the Global Head of Third Party Security at Paypal and the first Chief Information Security Officer for the Commonwealth of Pennsylvania.
    View full bio

Member Forums

May Member Forum Call: Engage & Elevate – Interactive TPRM Q&A

Elevate your Member Forum experience in May with an interactive twist! We're putting our members back in the spotlight by miking up participants for a lively and engaging conversation with our senior advisors. Join us for an exclusive hour-long Third-Party Risk Management (TPRM) session, where your questions drive the discussion. This is your chance to actively participate, share insights, and get personalized advice from the experts. Don't miss this unique opportunity to shape the conversation and elevate your TPRM knowledge. Mark your calendars and come ready to engage in an enriching dialogue with our advisors.
Speakers:
  • Andrew Moyad
    CEO, Shared Assessments
    Andrew is the CEO of Shared Assessments, a global membership organization that supports hundreds of companies, risk programs, and thousands of associated third-party and other risk professionals. As a risk practitioner and executive, he has driven a culture of accountability and diligence in safeguarding information and other assets for organizations and their third parties. He has more than 25 years of experience in risk management and information security.
    View full bio
  • Elizabeth Dunsmoor
    TPRM Principal, Shared Assessments
    Elizabeth Dunsmoor recently joined Shared Assessments as a TPRM Principal after 15 years as a TPRM practitioner. She has experience designing holistic programs and delivering assessment work within the cybersecurity, financial services, manufacturing, and healthcare sectors. With a proven ability to oversee and execute long-term operational strategies and methodologies for risk programs, Elizabeth is proficient in a variety of management actions including translating strategies into measurable plans, partnering with Procurement, corporate teams, and firm leaders to develop a pipeline of cross-functional leaders within the risk management function. She now provides training and guidance to business leaders to ensure understanding of program requirements, third-party capabilities, and performance expectations.
    View full bio
  • Eric Evans
    Managing Director, Partnerships & Alliances, Rapid Ratings
    Eric manages strategic partnerships/alliances at RapidRatings and leads partner API integrations into procurement, supplier risk, governance risk & compliance platforms to benefit joint clients. Eric has over 20 years of experience in data, risk, and compliance, including companies such as Aetna, EDGAR Online, and Donnelley Financial Solutions. Eric just recently completed the CTPRP exam and is awaiting certification. Eric is actively involved with various working groups of shared assessments. He is the co-chair of the Global Best Practices Committee and is part of the US Steering Committee. He’s also part of the Solution Provider Council at the Institute of Supply Management (ISM) and sits on the ISM-NY board. ​
    View full bio

Webinar

Building A TPRM Program

Building a strong third-party risk management program is essential for any organization that relies on vendors and suppliers. This webinar will guide you through the entire process, from establishing due diligence best practices to leveraging continuous monitoring strategies to assist your organization in strengthening business resiliency and preparing you to pivot. Learn how to build standards and methodologies to identify, assess, and mitigate risks associated with your third parties. Empower your program to make informed decisions about your partnerships and safeguard your business.
Speakers:
  • Jennifer Hancock
    Senior Advisor, Shared Assessments
    Jennifer Hancock is a third-party risk management professional with more than 20 years of experience in third-party risk management. As owner of Hancock Consulting LLC, a consultancy she founded to provide specialized advisory services, Ms. Hancock has been able to help organizations develop effective third-party risk management strategies and improve their overall resilience. Her expertise has been sought after by a wide range of clients across industries, and she is dedicated to helping organizations of all sizes manage their third-party risks effectively. As a thought leader in the field of third-party risk management, Ms. Hancock has been a featured speaker at numerous industry events and conferences. She is both a Certified Third-Party Risk Professional and a Certified Third-Party Risk Assessor (CTPRA).
    View full bio
  • Linnea Solem
    CEO, Solem Risk Partners
    Linnea Solem is CEO and Founder of Solem Risk Partners, LLC a management consulting and advisory services company focused on Privacy Program Management, Third Party Risk Management, and Enterprise Risk Management. She is a management consulting executive and former Chief Privacy Officer and Vice President Risk/Compliance for a large diverse technology service provider. She has a cross-functional background with 30+ years of experience working in regulated industries. She has over two decades of experience working with Executive Management and Audit Committee/Board of Director expectations for data privacy, public company controls and service provider relationships.
    View full bio

Webinar

Charting the Course: Navigating AI Governance in the Era of Responsible Data Use

Charting the Course: Navigating AI Governance in the Era of Responsible Data Use Embarking on a responsible AI journey is a significant undertaking, and understanding the key drivers necessitating AI Governance is essential for initiating and crafting an effective governance plan. This webinar will illuminate the path to navigating the complex AI landscape by:

  • • Providing an overview of the global laws and frameworks regulating AI
  • • Discussing key trends and challenges associated with embracing responsible AI adoption
  • • A preview into best practices for evaluating third-party blindspots in the age of AI
Speakers:
  • Chris Johnson
    Senior Advisor, Shared Assessments
    Chris is a Senior Advisor to Shared Assessments where he focuses on healthcare, financial services, and emerging technologies. He has more than 25 years of experience helping clients effectively manage risk while exhibiting a passionate and dynamic leadership style. Prior to joining Shared Assessments, Chris led third party risk management and information technology initiatives at Bristol Myers Squibb, Bank of America, Merrill Lynch, KPMG, and Marriott International.
    View full bio
  • Bex Evans
    Senior Product Marketing Manager, AI Governance, OneTrust
    Rebecca (Bex) Evans serves as Senior Product Marketing Manager for Responsible AI at OneTrust, the Trust Intelligence Platform, unlocking every company’s value and potential to thrive by doing what’s good for people and the planet. OneTrust connects privacy, GRC, ethics, and ESG teams, data, and processes, so all companies can collaborate seamlessly and put trust at the center of their operations and culture. In her role, Bex supports the OneTrust Privacy & Data Governance Cloud where she advises companies on how to transform privacy compliance into trusted and ethical data use. Bex earned a bachelor’s in economics with a minor in Theatre at SUNY Binghamton and holds CIPP/E, CIPPM, and Trauma Informed Yoga certifications.
    View full bio

Webinar

Navigating the Impact of DORA: What US Companies should know about the new EU DORA Regulation

The Digital Operational Resilience Act (DORA) affects US-based organizations that provide financial services in the EU or offer third-party services to EU financial services companies. This session aims to provide an understanding of DORA, including its compliance expectations, and offers practical guidance on how US firms can prepare for DORA.

Learning Objectives:

  • • Gain awareness of DORA and how it fits into the EU operational resilience framework
  • • Understand what impacts DORA will have on the 5 core service areas
  • • Gain context and background to make informed decisions on planning for DORA compliance
Speakers:
  • Gary Roboff
    Senior Advisor, Shared Assessments
    Gary Roboff is a Senior Advisor to Shared Assessments where he focuses on payments, risk management, mobile financial services, and information management. Gary has almost four decades of experience in financial services planning and management, including 25 years at JP Morgan Chase where he retired as Senior Vice President of Electronic Commerce. Gary has worked extensively in electronic payments, payments fraud, third party risk management, privacy, and information utilization, as well as business frameworks and standards for electronic commerce applications.
    View full bio
  • Joe Long
    Director, Business and Operational Resilience, MorganFranklin Consulting, Cybersecurity
    As a director in MorganFranklin Cyber’s Operational Resilience practice, Joe brings nearly 30 years of industry and management consulting experience where he has led numerous organizations through the process of planning, developing, and embedding risk management programs. With a focus on the integration of risk disciplines, Joe specializes in business continuity, operational risk management and crisis management. Most recently, Joe led the development and implementation of an Operational Risk and Resilience Program for a US-based, Global Asset Management firm. As a new program within the organization, the project focused on the development of an operational risk governance structure, risk assessment framework, policies, and procedures. Joe also leveraged existing business continuity plans to develop, organize, and facilitate a global tabletop exercise for the Macro and Equities Trading functions spanning the firm’s Chicago, New York, and London offices. Prior to joining MorganFranklin, Joe served as the Global Director of Business Continuity and Crisis Management for a large, multinational organization, where he successfully led the development and implementation of an Enterprise-wide Operational Resilience Program across the US, Middle East, Europe, South America, and Asia. Joe earned a Bachelor of Science in Accounting from the University of South Carolina and a MBA from the University of Miami. He is a Certified Business Continuity Professional (CBCP), and holds an Associate in Risk Management (ARM) designation from the Insurance Institute of America (IIA).
    View full bio
  • Robert Jonson
    Senior Manager | Cyber Resilience & Recovery, MorganFranklin Consulting
    Robert is a Senior Manager in Morgan Franklin's cybersecurity practice where he assists his clients in enhancing their resilience posture across all key operational resilience domains. With over 20 years of experience, Robert specializes in designing and implementing effective solutions to mitigate business disruptions, ensuring continuance of operational continuity for his clients.
    View full bio

Education

Education Open House: Charting Your Course In Risk Management

Our Education Open House is a great opportunity to learn about trainings, certifications, and career paths in Third-Party Risk Management. Whether you are at the start of your TPRM career or are a seasoned professional, we will expand your awareness of educational and professional possibilities in risk management. Come with curiosity, leave with a clearer career path forward! In this session, we will:
  • Cover new content within our certifications
  • Identify who benefits from our trainings and certifications
  • Articulate career paths in TPRM
  • Introduce you to our NEW Job Board

    (Please note this session is intended for those seeking to learn more about Shared Assessments' offerings - no CPEs offered).
  • Member Forums

    April Member Forum Call: Ask Our Senior Advisors Anything – Your Exclusive TPRM Q&A Session

    Join us in April for an exclusive Member Forum Call where you have the opportunity to directly engage with our senior advisors in a dynamic Q&A session centered around Third-Party Risk Management. Whether you missed our annual summit or simply have burning questions, this hour-long webinar is your chance to gain valuable insights, clarity, and expert advice straight from the source. Don't miss this unique opportunity to delve into TPRM topics that matter most to you and your organization. Mark your calendars and come prepared to ask our advisors anything!
    Speakers:
    • Chris Johnson
      Senior Advisor , Shared Assessments
      Chris is a Senior Advisor to Shared Assessments where he focuses on healthcare, financial services, and emerging technologies. He has more than 25 years of experience helping clients effectively manage risk while exhibiting a passionate and dynamic leadership style. Prior to joining Shared Assessments, Chris led third party risk management and information technology initiatives at Bristol Myers Squibb, Bank of America, Merrill Lynch, KPMG, and Marriott International.
      View full bio
    • Jennifer Hancock
      Senior Advisor , Shared Assessments
      Jennifer Hancock is a third-party risk management professional with more than 20 years of experience in third-party risk management. As owner of Hancock Consulting LLC, a consultancy she founded to provide specialized advisory services, Ms. Hancock has been able to help organizations develop effective third-party risk management strategies and improve their overall resilience. Her expertise has been sought after by a wide range of clients across industries, and she is dedicated to helping organizations of all sizes manage their third-party risks effectively. As a thought leader in the field of third-party risk management, Ms. Hancock has been a featured speaker at numerous industry events and conferences. She is both a Certified Third-Party Risk Professional and Certified Third-Party Risk Assessor (CTPRA).
      View full bio
    • Nasser Fattah
      Senior Advisor, Shared Assessments
      Nasser is passionate about risk management, including cybersecurity, IT risk and assurance, TPRM, and regulatory compliance. He brings 25+ years as a practitioner deploying and standardizing enterprise-wide risk programs to align and support business drivers, including digital transformation and new markets.
      View full bio

    Webinar

    4th & Nth Parties

    Evaluating appropriate ways to conduct risk assessments beyond your 3rd parties, by understanding your added exposures to 4th and Nth parties. Join us to uncover actionable insights for prioritizing critical suppliers and their subcontractors, mitigating potential disruptions, and adopting a pragmatic, risk-based approach to TPRM for your 4th and Nth parties. Gain clarity on where to focus your efforts amidst the vast network of dependencies, ensuring resilience in the face of evolving threats.
    Speakers:
    • Rhonda Cook
      Senior Advisor, Shared Assessments
    • Chad Freese
      Lead Information Security Advisor, USAA
      Chad Freese is a distinguished Information Security Professional with over 20 years of experience, excelling as a Lead Information Security Advisor at USAA. In this role, he skillfully manages cloud security risk reviews and leads the development and integration of innovative risk assessment, security, and automation tools. His past achievements include several leadership roles on the Third-Party Cyber Risk Assessments team at USAA and serving as a Principal Cybersecurity Architect at Honeywell Aerospace, where he developed critical security architectures for the aviation industry and NASA.
      View full bio
    • Chelsea Stevenson
      Information Security Advisor I, USAA
      Chelsea Stevenson is a seasoned Information Security Professional with over 10 years of dedicated experience, currently making her mark as an expert in third-party risk management and due diligence. Her role encompasses the critical evaluation of partnership risks and the formulation of strategic due diligence processes, ensuring the utmost security in business collaborations. Chelsea's career has been highlighted by her innovative approach to risk management, where she has successfully implemented comprehensive risk assessment frameworks that significantly bolster organizational resilience. Before her current focus, Chelsea played pivotal roles in enhancing information security postures within various sectors, contributing her expertise to establish robust security infrastructures and policies. Her academic background includes an MBA and a Bachelor’s degree in cybersecurity, along with certifications such as CISSP, underscoring her commitment to professional development and excellence in the field of information security. Beyond her professional achievements, Chelsea is an active participant in the Shared Assessments community, where she currently holds a CTPRP.
      View full bio

    Product Forums

    April Product Forum Call – VRMMM

    Join us for our upcoming Product Forum webinar where we'll delve deep into our VRMMM (Vendor Risk Management Maturity Model) product. Designed to assess third-party risk programs against industry benchmarks, the VRMMM includes the Third-Party Risk Management Benchmark Study, offering comprehensive insights. Discover how VRMMM empowers organizations to self-assess their Third-Party Risk Management Program, develop a roadmap for improvement, and quantify investments, both internally and externally. Don't miss this opportunity to gain valuable insights into enhancing your risk management practices.
    Speakers:
    • Colleen Milazzo
      SVP, TPR Software Products, Shared Assessments
      Colleen leads the TPRM software team in the development of software products/tools for third party risk assurance. Colleen has over 20 years of experience within the financial services industry and consulting. She has led programs associated with risk management, procurement/contract negotiation, mergers and acquisitions, and business process reengineering. She has regulatory and global experience executing portfolios to meet the corporate strategy.
      View full bio
    • Jennifer Hancock
      Senior Advisor, Shared Assessments
      Jennifer Hancock is a third-party risk management professional with more than 20 years of experience in third-party risk management. As owner of Hancock Consulting LLC, a consultancy she founded to provide specialized advisory services, Ms. Hancock has been able to help organizations develop effective third-party risk management strategies and improve their overall resilience. Her expertise has been sought after by a wide range of clients across industries, and she is dedicated to helping organizations of all sizes manage their third-party risks effectively As a thought leader in the field of third-party risk management, Ms. Hancock has been a featured speaker at numerous industry events and conferences. She is both a Certified Third-Party Risk Professional and Certified Third-Party Risk Assessor (CTPRA).
      View full bio
    • Michael Walton
      Compliance Analyst, Shared Assessments
    • Mike Baker
      Software Developer, Shared Assessments

    Member Forums

    March 2024 Member Forum Call – Navigating the Headwinds: Enhancing Agility to Regain Momentum

    Discover the highlights from Deloitte's latest survey on third-party risk management in 2023. The survey examines the increasing challenges of managing third-party relationships in today's complex business environment. It provides valuable insights on how leaders can strengthen these relationships to reduce risks and adapt better to economic uncertainties. The call will focus on strategies to build resilience, trust, and utilize digital tools for long-term growth.
    Speakers:
    • Andrew Moyad
      CEO, Shared Assessments
      Andrew is the CEO of Shared Assessments, a global membership organization that supports hundreds of companies, risk programs, and thousands of associated third-party and other risk professionals. As a risk practitioner and executive, he has driven a culture of accountability and diligence in safeguarding information and other assets for organizations and their third parties. He has more than 25 years of experience in risk management and information security.
      View full bio
    • Sophie Bright
      Manager, Deloitte
      Sophie has over 5 years’ experience advising and supporting clients with the design, build and implementation of their Third Party Management Frameworks for the identification, assessment, management, and ongoing monitoring of third party risks to cover the end to end third party lifecycle. Sophie has worked across multiple industry sectors but specialises in Financial Services specifically on regulatory requirements relating to outsourcing and third party risk across multiple jurisdictions.
      View full bio
    • Danny Grifiths
      Partner, Deloitte
      Danny is a Partner in our UK Risk Advisory practice. He has over 16 years’ experience advising his clients on a variety of topics encompassing Third Party Risk Management (TPRM), Outsourcing and Operational Resilience. He has worked extensively in the Financial Services sector and is recognised as a thought-leader through his hosting and participation in industry forums as well as co-authoring our annual global survey on TPRM.
      View full bio
    1 2 3 12