On Demand Events

Missed a recent webinar or Member Forum Call? Catch our previous virtual sessions here. We now offer CPEs from most of our on-demand offerings. To earn CPEs, please submit your information and codes in the form linked below. Note: our on-demand recordings work best when viewed in the Chrome browser.

All On-demand Events

July Member Forum Call – Regulatory Roundup: Essential Updates for TPRM Professionals

Join us on July 9 for an insightful Member Forum Call focused on Regulatory Affairs and Third-Party Risk Management. Led by our esteemed Regulatory Committee leadership, this hour-long discussion will delve into critical regulatory topics shaping the landscape of TPRM. Key discussion points will include the implications of the Artificial Intelligence Act (AIA Act), the Digital Operational Resilience Act (DORA), and the Network and Information Security Directive (NIS2). We'll also explore the Environmental, Social, and Governance (ESG) climate and the German Supply Chain Act. Don't miss this opportunity to stay informed and engage with experts on these pivotal regulatory matters.
Speakers:
  • Brad Keller
    VP of Third Party Risk & Governance, LPL Financial Services
    Influential Risk Management Executive with proven success managing risk across multiple business lines while delivering against business objectives. Develop and maintain partnerships with internal/external business interests to identify key risk areas, mitigate resistance to change, and drive operational excellence. Trusted advisor to identify and resolve regulatory and business operational issues to deliver end-to-end solutions that drive business excellence while minimizing risk exposure.
    View full bio
  • Gary Roboff
    Senior Advisor , Shared Assessments
    Gary has nearly four decades of experience in financial services planning and management, working extensively on electronic payments, payments fraud, third-party risk management, privacy and information utilization, and business frameworks and standards for electronic commerce applications. His experience includes 25 years at JP Morgan Chase, where he retired as Senior Vice President of Electronic Commerce. At Shared Assessments, he lends this thought leadership to committees, research projects, and developing the Shared Assessments Framework.
    View full bio
Become a Member to Download
Become a Member to Watch

Elevating Risk Management: Mirato and Shared Assessments

Mirato, an Artificial Intelligence (AI) and Natural Language Processing (NLP) powered software platform for risk management, recently joined the Shared Assessments Marketplace. Join Mirato's CEO Aki Eldar and Shared Assessments' CEO Andrew Moyad as they discuss AI's role in risk management. Together, they will examine AI's potential to elevate risk management practices and help you determine your program's approach to AI. Learn how you can use machine insights to enable smarter human decisions in risk management!
Speakers:
  • Aki Eldar
    CEO & Co-Founder, Mirato
    Aki Eldar is the co-founder & CEO of Mirato, provider of a third-party risk management (TPRM) platform that orchestrates and automates the entire TPRM lifecycle for banks and other financial institutions. Entrepreneur, mentor and high-tech executive, Aki Eldar brings to Mirato more than two decades of senior-level management experience as CxO and CEO of Variance Technologies. Aki worked for the Israeli government and was the founder and CEO of Secure Islands Technologies, which was acquired by Microsoft. Aki’s professional expertise and proven track record have led to cumulative sales in the hundreds of millions of dollars spanning multiple global industries, ranging from cybersecurity to enterprise software, telecommunication, networking and defense.
    View full bio
  • Andrew Moyad
    CEO, Shared Assessments
    Andrew Moyad is the Chief Executive Officer of Shared Assessments. Andrew is an accomplished leader and trailblazer in third party risk management. As a practitioner and a senior risk management executive, he has driven a culture of accountability and diligence in safeguarding information. Andrew has more than 25 years in risk management and information security. He has contributed greatly to the transformation and advancement of risk management as a strategic function that intersects with and helps guide all aspects of organizations. Most recently, Andrew served as Senior Vice President, Vendor Risk Management at Blackstone, where he led a team of risk professionals responsible for overseeing all phases of the vendor lifecycle at the firm, including risk assessments, control diligence, contract reviews, financial checks, performance monitoring, issue tracking, and management reporting. Prior to Blackstone, he served as a director and global head of vendor risk management and BlackRock and Senior Vice President for Citigroup, where he was a Business Information Security Officer in Global Fixed Income and led third party risk assessments for several years. Andrew holds a Bachelor of Arts Degree in Natural Sciences from Harvard University and a Master of Science Degree in Information Systems from the Stevens Institute of Technology.
    View full bio
Register to Download
Register to Watch

Unveiling the Hidden Risks in Third-Party Risk Management

This webinar aims to illuminate the often-overlooked risks in third-party risk management (TPRM), highlighted by high-profile incidents like Log4j, SolarWinds, and the more recent XZ-Utils Backdoor.
Speakers:
  • Bob Maley
    Chief Security Officer, Black Kite
    Bob Maley, Inventor, CISO, Author, Futurist, and OODA Loop fanatic, is currently the Chief Security Officer at Black Kite, a technology company that specializes in cybersecurity intelligence gathering and analysis. Before, he was the Global Head of Third Party Security at Paypal and the first Chief Information Security Officer for the Commonwealth of Pennsylvania.
    View full bio
  • Chris Johnson
    Senior Advisor, Shared Assessments
    Chris is a Senior Advisor to Shared Assessments where he focuses on healthcare, financial services, and emerging technologies. He has more than 25 years of experience helping clients effectively manage risk while exhibiting a passionate and dynamic leadership style. Prior to joining Shared Assessments, Chris led third party risk management and information technology initiatives at Bristol Myers Squibb, Bank of America, Merrill Lynch, KPMG, and Marriott International.
    View full bio
Register to Download
Register to Watch

May Member Forum Call: Engage & Elevate – Interactive TPRM Q&A

Elevate your Member Forum experience in May with an interactive twist! We're putting our members back in the spotlight by miking up participants for a lively and engaging conversation with our senior advisors. Join us for an exclusive hour-long Third-Party Risk Management (TPRM) session, where your questions drive the discussion. This is your chance to actively participate, share insights, and get personalized advice from the experts. Don't miss this unique opportunity to shape the conversation and elevate your TPRM knowledge. Mark your calendars and come ready to engage in an enriching dialogue with our advisors.
Speakers:
  • Andrew Moyad
    CEO, Shared Assessments
    Andrew is the CEO of Shared Assessments, a global membership organization that supports hundreds of companies, risk programs, and thousands of associated third-party and other risk professionals. As a risk practitioner and executive, he has driven a culture of accountability and diligence in safeguarding information and other assets for organizations and their third parties. He has more than 25 years of experience in risk management and information security.
    View full bio
  • Elizabeth Dunsmoor
    TPRM Principal, Shared Assessments
    Elizabeth Dunsmoor recently joined Shared Assessments as a TPRM Principal after 15 years as a TPRM practitioner. She has experience designing holistic programs and delivering assessment work within the cybersecurity, financial services, manufacturing, and healthcare sectors. With a proven ability to oversee and execute long-term operational strategies and methodologies for risk programs, Elizabeth is proficient in a variety of management actions including translating strategies into measurable plans, partnering with Procurement, corporate teams, and firm leaders to develop a pipeline of cross-functional leaders within the risk management function. She now provides training and guidance to business leaders to ensure understanding of program requirements, third-party capabilities, and performance expectations.
    View full bio
  • Eric Evans
    Managing Director, Partnerships & Alliances, Rapid Ratings
    Eric manages strategic partnerships/alliances at RapidRatings and leads partner API integrations into procurement, supplier risk, governance risk & compliance platforms to benefit joint clients. Eric has over 20 years of experience in data, risk, and compliance, including companies such as Aetna, EDGAR Online, and Donnelley Financial Solutions. Eric just recently completed the CTPRP exam and is awaiting certification. Eric is actively involved with various working groups of shared assessments. He is the co-chair of the Global Best Practices Committee and is part of the US Steering Committee. He’s also part of the Solution Provider Council at the Institute of Supply Management (ISM) and sits on the ISM-NY board. ​
    View full bio
Become a Member to Download
Become a Member to Watch

Building A TPRM Program

Building a strong third-party risk management program is essential for any organization that relies on vendors and suppliers. This webinar will guide you through the entire process, from establishing due diligence best practices to leveraging continuous monitoring strategies to assist your organization in strengthening business resiliency and preparing you to pivot. Learn how to build standards and methodologies to identify, assess, and mitigate risks associated with your third parties. Empower your program to make informed decisions about your partnerships and safeguard your business.
Speakers:
  • Jennifer Hancock
    Senior Advisor, Shared Assessments
    Jennifer Hancock is a third-party risk management professional with more than 20 years of experience in third-party risk management. As owner of Hancock Consulting LLC, a consultancy she founded to provide specialized advisory services, Ms. Hancock has been able to help organizations develop effective third-party risk management strategies and improve their overall resilience. Her expertise has been sought after by a wide range of clients across industries, and she is dedicated to helping organizations of all sizes manage their third-party risks effectively. As a thought leader in the field of third-party risk management, Ms. Hancock has been a featured speaker at numerous industry events and conferences. She is both a Certified Third-Party Risk Professional and a Certified Third-Party Risk Assessor (CTPRA).
    View full bio
  • Linnea Solem
    CEO, Solem Risk Partners
    Linnea Solem is CEO and Founder of Solem Risk Partners, LLC a management consulting and advisory services company focused on Privacy Program Management, Third Party Risk Management, and Enterprise Risk Management. She is a management consulting executive and former Chief Privacy Officer and Vice President Risk/Compliance for a large diverse technology service provider. She has a cross-functional background with 30+ years of experience working in regulated industries. She has over two decades of experience working with Executive Management and Audit Committee/Board of Director expectations for data privacy, public company controls and service provider relationships.
    View full bio
Register to Watch

Charting the Course: Navigating AI Governance in the Era of Responsible Data Use

Charting the Course: Navigating AI Governance in the Era of Responsible Data Use Embarking on a responsible AI journey is a significant undertaking, and understanding the key drivers necessitating AI Governance is essential for initiating and crafting an effective governance plan. This webinar will illuminate the path to navigating the complex AI landscape by:

  • • Providing an overview of the global laws and frameworks regulating AI
  • • Discussing key trends and challenges associated with embracing responsible AI adoption
  • • A preview into best practices for evaluating third-party blindspots in the age of AI
Speakers:
  • Chris Johnson
    Senior Advisor, Shared Assessments
    Chris is a Senior Advisor to Shared Assessments where he focuses on healthcare, financial services, and emerging technologies. He has more than 25 years of experience helping clients effectively manage risk while exhibiting a passionate and dynamic leadership style. Prior to joining Shared Assessments, Chris led third party risk management and information technology initiatives at Bristol Myers Squibb, Bank of America, Merrill Lynch, KPMG, and Marriott International.
    View full bio
  • Bex Evans
    Senior Product Marketing Manager, AI Governance, OneTrust
    Rebecca (Bex) Evans serves as Senior Product Marketing Manager for Responsible AI at OneTrust, the Trust Intelligence Platform, unlocking every company’s value and potential to thrive by doing what’s good for people and the planet. OneTrust connects privacy, GRC, ethics, and ESG teams, data, and processes, so all companies can collaborate seamlessly and put trust at the center of their operations and culture. In her role, Bex supports the OneTrust Privacy & Data Governance Cloud where she advises companies on how to transform privacy compliance into trusted and ethical data use. Bex earned a bachelor’s in economics with a minor in Theatre at SUNY Binghamton and holds CIPP/E, CIPPM, and Trauma Informed Yoga certifications.
    View full bio
Register to Download
Register to Watch

Navigating the Impact of DORA: What US Companies should know about the new EU DORA Regulation

The Digital Operational Resilience Act (DORA) affects US-based organizations that provide financial services in the EU or offer third-party services to EU financial services companies. This session aims to provide an understanding of DORA, including its compliance expectations, and offers practical guidance on how US firms can prepare for DORA.

Learning Objectives:

  • • Gain awareness of DORA and how it fits into the EU operational resilience framework
  • • Understand what impacts DORA will have on the 5 core service areas
  • • Gain context and background to make informed decisions on planning for DORA compliance
Speakers:
  • Gary Roboff
    Senior Advisor, Shared Assessments
    Gary Roboff is a Senior Advisor to Shared Assessments where he focuses on payments, risk management, mobile financial services, and information management. Gary has almost four decades of experience in financial services planning and management, including 25 years at JP Morgan Chase where he retired as Senior Vice President of Electronic Commerce. Gary has worked extensively in electronic payments, payments fraud, third party risk management, privacy, and information utilization, as well as business frameworks and standards for electronic commerce applications.
    View full bio
  • Joe Long
    Director, Business and Operational Resilience, MorganFranklin Consulting, Cybersecurity
    As a director in MorganFranklin Cyber’s Operational Resilience practice, Joe brings nearly 30 years of industry and management consulting experience where he has led numerous organizations through the process of planning, developing, and embedding risk management programs. With a focus on the integration of risk disciplines, Joe specializes in business continuity, operational risk management and crisis management. Most recently, Joe led the development and implementation of an Operational Risk and Resilience Program for a US-based, Global Asset Management firm. As a new program within the organization, the project focused on the development of an operational risk governance structure, risk assessment framework, policies, and procedures. Joe also leveraged existing business continuity plans to develop, organize, and facilitate a global tabletop exercise for the Macro and Equities Trading functions spanning the firm’s Chicago, New York, and London offices. Prior to joining MorganFranklin, Joe served as the Global Director of Business Continuity and Crisis Management for a large, multinational organization, where he successfully led the development and implementation of an Enterprise-wide Operational Resilience Program across the US, Middle East, Europe, South America, and Asia. Joe earned a Bachelor of Science in Accounting from the University of South Carolina and a MBA from the University of Miami. He is a Certified Business Continuity Professional (CBCP), and holds an Associate in Risk Management (ARM) designation from the Insurance Institute of America (IIA).
    View full bio
  • Robert Jonson
    Senior Manager | Cyber Resilience & Recovery, MorganFranklin Consulting
    Robert is a Senior Manager in Morgan Franklin's cybersecurity practice where he assists his clients in enhancing their resilience posture across all key operational resilience domains. With over 20 years of experience, Robert specializes in designing and implementing effective solutions to mitigate business disruptions, ensuring continuance of operational continuity for his clients.
    View full bio
Register to Download
Register to Watch

Education Open House: Charting Your Course In Risk Management

Our Education Open House is a great opportunity to learn about trainings, certifications, and career paths in Third-Party Risk Management. Whether you are at the start of your TPRM career or are a seasoned professional, we will expand your awareness of educational and professional possibilities in risk management. Come with curiosity, leave with a clearer career path forward! In this session, we will:
  • Cover new content within our certifications
  • Identify who benefits from our trainings and certifications
  • Articulate career paths in TPRM
  • Introduce you to our NEW Job Board

    (Please note this session is intended for those seeking to learn more about Shared Assessments' offerings - no CPEs offered).
  • Register to Download
    Register to Watch

    April Member Forum Call: Ask Our Senior Advisors Anything – Your Exclusive TPRM Q&A Session

    Join us in April for an exclusive Member Forum Call where you have the opportunity to directly engage with our senior advisors in a dynamic Q&A session centered around Third-Party Risk Management. Whether you missed our annual summit or simply have burning questions, this hour-long webinar is your chance to gain valuable insights, clarity, and expert advice straight from the source. Don't miss this unique opportunity to delve into TPRM topics that matter most to you and your organization. Mark your calendars and come prepared to ask our advisors anything!
    Speakers:
    • Chris Johnson
      Senior Advisor , Shared Assessments
      Chris is a Senior Advisor to Shared Assessments where he focuses on healthcare, financial services, and emerging technologies. He has more than 25 years of experience helping clients effectively manage risk while exhibiting a passionate and dynamic leadership style. Prior to joining Shared Assessments, Chris led third party risk management and information technology initiatives at Bristol Myers Squibb, Bank of America, Merrill Lynch, KPMG, and Marriott International.
      View full bio
    • Jennifer Hancock
      Senior Advisor , Shared Assessments
      Jennifer Hancock is a third-party risk management professional with more than 20 years of experience in third-party risk management. As owner of Hancock Consulting LLC, a consultancy she founded to provide specialized advisory services, Ms. Hancock has been able to help organizations develop effective third-party risk management strategies and improve their overall resilience. Her expertise has been sought after by a wide range of clients across industries, and she is dedicated to helping organizations of all sizes manage their third-party risks effectively. As a thought leader in the field of third-party risk management, Ms. Hancock has been a featured speaker at numerous industry events and conferences. She is both a Certified Third-Party Risk Professional and Certified Third-Party Risk Assessor (CTPRA).
      View full bio
    • Nasser Fattah
      Senior Advisor, Shared Assessments
      Nasser is passionate about risk management, including cybersecurity, IT risk and assurance, TPRM, and regulatory compliance. He brings 25+ years as a practitioner deploying and standardizing enterprise-wide risk programs to align and support business drivers, including digital transformation and new markets.
      View full bio
    Become a Member to Download
    Become a Member to Watch

    4th & Nth Parties

    Evaluating appropriate ways to conduct risk assessments beyond your 3rd parties, by understanding your added exposures to 4th and Nth parties. Join us to uncover actionable insights for prioritizing critical suppliers and their subcontractors, mitigating potential disruptions, and adopting a pragmatic, risk-based approach to TPRM for your 4th and Nth parties. Gain clarity on where to focus your efforts amidst the vast network of dependencies, ensuring resilience in the face of evolving threats.
    Speakers:
    • Rhonda Cook
      Senior Advisor, Shared Assessments
    • Chad Freese
      Lead Information Security Advisor, USAA
      Chad Freese is a distinguished Information Security Professional with over 20 years of experience, excelling as a Lead Information Security Advisor at USAA. In this role, he skillfully manages cloud security risk reviews and leads the development and integration of innovative risk assessment, security, and automation tools. His past achievements include several leadership roles on the Third-Party Cyber Risk Assessments team at USAA and serving as a Principal Cybersecurity Architect at Honeywell Aerospace, where he developed critical security architectures for the aviation industry and NASA.
      View full bio
    • Chelsea Stevenson
      Information Security Advisor I, USAA
      Chelsea Stevenson is a seasoned Information Security Professional with over 10 years of dedicated experience, currently making her mark as an expert in third-party risk management and due diligence. Her role encompasses the critical evaluation of partnership risks and the formulation of strategic due diligence processes, ensuring the utmost security in business collaborations. Chelsea's career has been highlighted by her innovative approach to risk management, where she has successfully implemented comprehensive risk assessment frameworks that significantly bolster organizational resilience. Before her current focus, Chelsea played pivotal roles in enhancing information security postures within various sectors, contributing her expertise to establish robust security infrastructures and policies. Her academic background includes an MBA and a Bachelor’s degree in cybersecurity, along with certifications such as CISSP, underscoring her commitment to professional development and excellence in the field of information security. Beyond her professional achievements, Chelsea is an active participant in the Shared Assessments community, where she currently holds a CTPRP.
      View full bio
    Register to Download
    Register to Watch
    1 2 3 4 13