On Demand Events

Teresa is a Senior Consultant with Shared Assessments specializing in Resilience and Continuity and Third Party Risk Management. T (as she is called) has more than 30 years of experience developing business resilience, continuity and incident management best practices within the financial services industry. T is also a serial retiree having most recently retired in 2019 from Citizens Financial Group (CFG) where she served as Executive Vice President and Head of Resilience, Recovery and Crisis and Chief of Staff in Corporate Security & Resilience (CS&R). T served as the thought leader shaping the Resilience agenda for Citizens Financial Group, including Business Resilience and Continuity, IT Resilience, Disaster Recovery and Incident Management. T’s chief responsibility was to ensure the continuity of operations should any event or situation disrupt – or threaten to disrupt – the delivery of financial services, and/or profoundly and negatively impact public confidence in the Group. T also served as Chief of Staff to the Bank’s Chief Security Officer, serving as her delegate in protecting the bank’s physical and digital security. Upon her retirement, T received certificates of appreciation from the Governor of the State of Rhode Island, the Rhode Island Alliance for Business Resilience and the Head of the Federal Emergency Management Agency (FEMA). Prior to joining CFG, T had retired from RBS Group in 2009, where she was the Global Head of Business Continuity.

Robert is a Senior Manager at Citizens Bank specializing in Business Resilience and Disaster Recovery for the organization. Bob has more than 35 years of experience in the financial services industry developing technology solutions to support the recoverability, availability, and needs of the business. In his current role at Citizens bank, Bob is responsible for ensuring internal compliance with the bank’s disaster recovery program and for compliance by critical third parties with the bank’s disaster recovery policies. Bob is also a key contributor to the data center strategy and architecture teams as well as the Cloud governance and oversight board. Prior roles at Putnam Investments, included disaster recovery compliance, data architect, and imaging design lead. Bob is an active member of the Rhode Island Alliance for Business Resilience and his local Community Emergency Response Team (CERT). 

Gary Roboff is a Senior Advisor to Shared Assessments where he focuses on payments, risk management, mobile financial services, and information management. Gary has almost four decades of experience in financial services planning and management, including 25 years at JP Morgan Chase where he retired as Senior Vice President of Electronic Commerce. Gary has worked extensively in electronic payments, payments fraud, third party risk management, privacy, and information utilization, as well as business frameworks and standards for electronic commerce applications.

Charlie Miller is a frequent speaker and a recognized expert in third party risk. His key responsibilities include expanding the Shared Assessments Third-Party Risk Management membership-driven program, facilitating thought leadership, industry vertical strategy groups, continuous monitoring / operational technology working groups, and loT research studies.

Colleen leads the TPRM software team in the development of software products/tools for third party risk assurance. Colleen has over 20 years of experience within the financial services industry and consulting. She has led programs associated with risk management, procurement/contract negotiation, mergers and acquisitions, and business process reengineering. She has regulatory and global experience executing portfolios to meet the corporate strategy.

Colleen leads the TPRM software team in the development of software products/tools for third party risk assurance. Colleen has over 20 years of experience within the financial services industry and consulting. She has led programs associated with risk management, procurement/contract negotiation, mergers and acquisitions, and business process reengineering. She has regulatory and global experience executing portfolios to meet the corporate strategy.

Andrew D'Angelo is an Associate Director in Protiviti’s New York Data Security and Privacy practice, with a focus on third-party risk management and data security. In addition to helping lead Protiviti’s third party risk managed service offering, he has supported clients along the journey of designing, implementing, and monitoring a variety of information security and compliance management programs across different industries. Andrew is also a regular participant in third-party risk thought leadership at the Shared Assessments.

Jill leads SEI’s Third Party Risk Management Program. Jill has 10 years of experience with third party risk management in the financial services industry. Her background includes oversight of activities across the entire vendor lifecycle, as well as responsibilities related to program design, regulatory examinations, and third party systems implementation. Jill is also a Certified Third Party Risk Professional (CTPRP.)

Gary Roboff is a Senior Advisor to Shared Assessments where he focuses on payments, risk management, mobile financial services, and information management. Gary has almost four decades of experience in financial services planning and management, including 25 years at JP Morgan Chase where he retired as Senior Vice President of Electronic Commerce. Gary has worked extensively in electronic payments, payments fraud, third party risk management, privacy, and information utilization, as well as business frameworks and standards for electronic commerce applications.

Andrew is an accomplished leader and trailblazer in third party risk management. As a practitioner and a senior risk management executive, he has driven a culture of accountability and diligence in safeguarding information. Andrew has more than 25 years in risk management and information security. He has contributed greatly to the transformation and advancement of risk management as a strategic function that intersects with and helps guide all aspects of organizations.

Cristina Dolan is an engineer, computer scientist and entrepreneur that has led the transformation of businesses and built revolutionary products utilizing advanced technologies across many industries including Cyber Security, FinTech, Telecom, Media, InsurTech and Retail. In addition to being a cofounder of several blockchain companies, including value-based healthcare company Additum.es, she currently heads up Global Alliances for RSA NetWitness, and has been an advisor to several cyber security, data, and next generation cloud computing companies. Cristina was a co-founder of OneMain.com, which grew to be the 10th largest ISP after a successful IPO (Acquired by Earthlink). Formerly, she held executive roles at Disney, Hearst, IBM, Oracle and Tradingscreen. Cristina earned a master’s degree from the MIT Media Lab and also holds a Master of Computer Science Engineering and Bachelor of Electrical Engineering. Born in New York City, she is a native English speaker and is also fluent in Spanish which was her first language.

Ron Bradley has been involved with Shared Assessments in some capacity for over 15 years. With a depth of experience building TPRM programs in financial services (Bank of America) and manufacturing (Reynolds, Trane Technologies), Ron understands how cultures and organizations drive the supply chain and third-party process. As Vice President, Ron strives to use his extensive knowledge of Third-Party Risk Management to help organizations build programs that realize the full potential of the Shared Assessments toolkit.

Husnain Bajwa serves as Vice President Field Engineering/Office of the CTO for Beyond Identity. He has over 25 years of experience in large-scale networks, infrastructure platforms, and cybersecurity including supply chain and third party risk management. Previously, Husnain held technology leadership roles at Hewlett Packard Enterprise, Aruba Networks, Ericsson, and BelAir Networks.

Nasser has 20+ years as a Cybersecurity, Supply Chain, and IT leader. With a focus on customer-first and team-building approaches, Fattah is able to align programs to support company strategies, regulatory requirements, and growth initiatives. He drives cybersecurity, supply chain, and IT as enablers for enterprise-wide transformation initiatives. He partners with executives to identify and select strategic external partners to deliver essential IT and cybersecurity services to the business. Nasser worked with global parent companies and subsidiaries to establish technology standards to maximize investments and operations efficacy to best support business needs and growth. Nasser has a strong, consistent record working successfully with Business and IT executives, regulators, auditors, and risk partners. Nasser also teaches cybersecurity at several colleges and is the chair for North America Shared Assessments – an industry best practices for the supply chain.

Tom Garrubba, Vice President, is an internationally recognized subject matter expert, lecturer, writer, and blogger on third-party risk, and is the head instructor for the Certified Third-Party Risk Professional (CTPRP) certification program. He is a contributor to Future of Sourcing, blogged for the Huffington Post’s Business section, and for Government Health IT, ISACA, Risk.net, and numerous eGRC websites.

Alastair Parr is responsible for ensuring that the demands of the market space are considered and applied innovatively within the Prevalent portfolio. He comes from a governance, risk and compliance background; developing and driving solutions to the ever-complex risk management space. He brings over 12 years of experience in product management, consultancy, and operations deliverables.

Richard Clarke is an internationally known expert on cybersecurity, having been the first “cyber czar” for the US Government and author of the first National Strategy for Cybersecurity. As a government official for over 30 years, he served in senior positions in the White House (Special Assistant to the President), State Department (Assistant Secretary), and the Pentagon. Since leaving government, Clarke has authored ten books, including a #1 national bestseller and two seminal books on cybersecurity, Cyber War (2010) and The Fifth Domain (2019). Clarke also founded Good Harbor in 2004, has taught at the Harvard Kennedy School, worked as an on-air expert for ABC News, and has served on multiple boards of directors, including MultiPlan (nyse: MPLN), Veracode, Sectigo, and the Middle East Institute.

Andrew Moyad is the CEO of Shared Assessments. Andrew is an accomplished leader and trailblazer in third party risk management. As a practitioner and a senior risk management executive, he has driven a culture of accountability and diligence in safeguarding information. Andrew has more than 25 years in risk management and information security. He has contributed greatly to the transformation and advancement of risk management as a strategic function that intersects with and helps guide all aspects of organizations.

Kaelyn is the Vendor Risk Manager for Alaska USA Federal Credit Union. Kaelyn’s experience comes from her role as a Senior Risk Analyst with the Rochdale Paragon Group. She provided consultation and analysis aiding large credit unions with assessing and managing third-party risk, along with providing program implementation and audit services. Kaelyn managed third party risk management programs for three large credit unions totaling over $20B in assets. She is the Shared Assessments Best Practices Awareness Group Chair.

Sean has over 25 years’ hands-on experience of delivering IT security and GRC managed services and remains a practicing Certified Third-Party Risk Professional (CTPRP) and Assessor (CTPRA). Sean leads the DVV Solutions consultancy team in defining the operational and regulatory requirements required to deliver a robust program of risk assurance and third-party due diligence. Sean is an active member of the Shared Assessments community holding the post of co-chair of the EMEA Best Practices Steering Committee and sits on UK Steering, Global Risk, and ESG committees to provide a regional perspective into the development of Shared Assessments’ global standards and practices for third-party risk frameworks and compliance.

Bob Jones is deeply committed to contributing to the well-being of the financial services community. A well-known and sought-after expert in risk management strategy, he has 50 years of experience leading fraud risk management and risk management strategy. When not writing blogs for SharedAssessments, Bob enjoys playing with his 4 grandchildren and 2 granddogs.

Charlie Miller is a frequent speaker and a recognized expert in third party risk. His key responsibilities include expanding the Shared Assessments Third-Party Risk Management membership-driven program, facilitating thought leadership, industry vertical strategy groups, continuous monitoring / operational technology working groups, and loT research studies.

Demi Ben-Ari is a software engineer, entrepreneur, and international tech speaker. He has over 10 years of experience in building various systems both from the field of near-real-time applications and big data distributed systems. - Google Developer Expert (GDE) - Google Cloud Platform. - Co-Founder of the “Big Things” Big Data community and Google Developer Group Cloud.

Candan Bolukbas is a digital polymath and Certified Ethical Hacker. Candan fully appreciates the growing threat to digital communications and data accumulation which affects all of us. He is co-founder and chief technology officer at Black Kite, a Boston-based “security-as-a-service solutions” company. Besides being an Ethical Hacker, he is a certified secure programmer, certified incident handler, and certified computer hacking forensic investigator.

Mike Jordan is a leader in cybersecurity, third party risk, and compliance. He is passionate about bringing people together to make the right decisions for managing risk. To meet business objectives, we have to take risks. While we can’t have one without the other, we can greatly improve our chances of success by bringing the right people, processes, and technology together to effectively understand and respond to risk in a way that best fits the situation. Mike has more than 20 years in security and risk management, his experience includes designing and deploying multiple scalable and sustainable security technologies, programs, strategies, and products.

Evan Tegethoff is an information security professional focused on risk, compliance, technology, and program development. His goal is to promote the continued maturity of our industry into a discipline that holistically considers cyber security, data protection, technology, and business risk as a unified concept.

Mike Wilkes is a senior security executive with broad experience designing, building, and supporting high-availability infrastructures for the financial services, energy, travel, media, and retail sectors.

Tom is an internationally recognized subject matter expert, lecturer, writer, and blogger on third-party risk, and is the head instructor for the Certified Third-Party Risk Professional (CTPRP) certification program. He is a contributor to Future of Sourcing, blogged for the Huffington Post’s Business section, and for Government Health IT, ISACA, Risk.net, and numerous eGRC websites.

Randy is Vice-President, Global Incident Management in State Street’s Enterprise Continuity Services where he focuses on response programs as well as supporting the firm’s 3rd Party Resilience program. Prior to returning to State Street, Randy was at Charles Schwab where his roles included Managing Mainframe Database, Systems and Network, Infrastructure Audit as well as roles including lead Engineer on Technology Resilience, developing and implementing 3rd party program resilience as well as Solutions Architect for Public Cloud implementation and data center strategy.