On Demand Events

Missed a recent webinar or Member Forum Call? Catch our previous virtual sessions here. We now offer CPEs from most of our on-demand offerings. To earn CPEs, please submit your information and codes in the form linked below. Note: our on-demand recordings work best when viewed in the Chrome browser.

All On-demand Events

How to Operationalize the California Privacy Rights Acts Requirements

The California Privacy Rights Acts, (CPRA) which expands on the California Consumer Privacy Act (CCPA), went into effect on January 1 2023. This session will examine the top operational impacts and provide strategies on how to prioritize and address in concert with requirements from other key privacy regulation such as GDPR. This includes the new provisions for data security, data minimization and data retention as well as expanded rights for California residents.
Speakers:
  • Charlie Miller
    Senior Advisor, Shared Assessments
    Charlie Miller is a frequent speaker and a recognized expert in third-party risk. His key responsibilities include expanding the Shared Assessments Third-Party Risk Management membership-driven program, facilitating thought leadership, industry vertical strategy groups, continuous monitoring / operational technology working groups, and loT research studies.
    View full bio
  • Evelyn deSouza
    Trust, Privacy and Compliance Leader, Oracle Fusion Cloud Applications
    Evelyn de Souza is head of privacy operations for the Oracle Cloud Applications LOB. She is focused on building in privacy versus bolting privacy on after the fact and harmonizing regulations to alleviate audit fatigue. She is a passionate speaker on data privacy who seeks to be an advocate for community banks and non profits in the wake of emerging privacy regulation. She has previously served as the Co-Chair of the Cloud Security Alliance Cloud Controls Matrix and the chair of the Data Governance Group and then more broadly as an advisor to the Cloud Security Alliance. Evelyn was named to CloudNOW's Top 10 Women in Cloud Computing for 2014 and Silicon Business Valley Journal's Woman of Influence in 2015 for her innovations in data security. Evelyn is the co-creator of Cloud Data Protection Cert, the industry's first blueprint for making data protection "business-consumable". When not working, Evelyn is an accomplished classical pianist who enjoys performing in her community.
    View full bio
Become a Member to Watch

Top 5 Ways to Make your Business More Resilient in 2023

A year marked by an increase in supply chain disruptions, 2022 left many organizations reeling in its aftermath. The New Year offers a chance for companies to prepare for a new wave of disruption and threats to business resiliency from economic headwinds, supply chain shortages, geopolitical events, and increased regulatory scrutiny.

This webinar will explore the top ways risk professionals can improve resiliency. Participants will learn practical ways to identify and manage threats posed by Nth Parties, understand and prepare for heightened ESG regulations, and identify cascading risk events that could signal a looming cyber-related disruption.

Speakers:
  • Jenna Wells
    Global Head Of Customer Experience, Supply Wisdom
    A Boston native, Jenna graduated from Purdue University as a Distinguished Military Graduate. Upon graduation she was commissioned as an Officer in the United States Marine Corps and went on to serve on active duty as a Signals and Ground Electronic Intelligence Officer. Jenna trained at the Navy and Marine Corps Intelligence Training Center at Dam Neck, Virginia and at the National Security Agency in Baltimore, Maryland before deploying to Afghanistan in support of Operation Enduring Freedom. After transitioning from active duty, Jenna joined Wellington Management, where she was an AVP, Manager, Third Party Risk Management. While at Wellington, Jenna oversaw a 24/7 Global Command Center and managed their global risk command and third-party assessment process. Jenna then joined Iron Mountain as their Director of Third-Party Risk Management, where she was responsible for overseeing the implementation, regulation, and global management of their third-party ecosystem, which is across 50 plus countries.

    Jenna manages the Customer Success and Risk & Resilience teams at Supply Wisdom and is a Certified Third-Party Risk Professional.

    View full bio
  • Tom Garrubba
    Director, TPRM Professional Services, Echelon Risk + Cyber
    Tom Garrubba is an internationally recognized subject matter expert, lecturer, writer, and blogger on third-party risk, and is the head instructor for the Certified Third-Party Risk Professional (CTPRP) certification program. He is a contributor to Future of Sourcing, blogged for the Huffington Post’s Business section, and for Government Health IT, ISACA, Risk.net, and numerous eGRC websites.
    View full bio
Register to Watch

Best Practices for Effective Third-Party Security Risk Management

InfoSec, IT risk and digital supply chain management professionals know the key to minimizing the risk of third-party breaches: implementing a comprehensive and efficient third-party security risk management (TPRSM) process. This webinar will explore the challenges surrounding third-party security and provide steps for efficient and effective TPSRM.

This session will cover:

    • Why third-party information security is more challenging now than before
    • Essentials in the third-party security risk management process and what common gaps
    • Guidance for CISOs to ensure third parties comply with regulatory requirements
    • Automation of third-party security (Is it possible to assess a third party’s attack surface with an automated platform?)
    • Communication with vendors to remediate cyber gaps
    • Onboarding new suppliers securely
Speakers:
  • Andrew Moyad
    CEO, Shared Assessments, Shared Assessments
    Andrew is an accomplished leader and trailblazer in third party risk management. As a practitioner and a senior risk management executive, he has driven a culture of accountability and diligence in safeguarding information. Andrew has more than 25 years in risk management and information security. He has contributed greatly to the transformation and advancement of risk management as a strategic function that intersects with and helps guide all aspects of organizations.
    View full bio
  • Dov Goldman
    Director of Risk and Compliance, Panorays
    Dov has years of experience in the third-party risk and compliance field, as well as a long history as a serial entrepreneur, software and network engineer. Dov focuses on the evolving best practices and industry standards in third-party management and regulatory compliance. Previously, Dov was VP of innovation at Opus, director of product marketing at Navigant, and founder and CEO of Cognet Corp and Dynalog Technologies. Dov has spoken at industry events around the world and has been quoted in numerous industry press articles, as well as The Wall Street Journal, about information security and privacy.
    View full bio
Register to Watch

New 2023 Product Suite: Standardized Excellence To Meet Today’s Risk Environment

Shared Assessments has updated and upgraded the 2023 Third Party Risk Management Product Suite to align with a changing regulatory and threat environment. Content has been adjusted to focus on Cybersecurity, Data Governance, Operational Risk, and Resilience. This session includes full details about updates and upgrades to the SIG, SCA, VRMMM, Data Governance Tools, including content organization and updates to industry and regulatory standards.

Cost: Free / Credits: 1 CPE
Speakers:
  • Christopher Campbell
    Manager of Sales, Shared Assessments
    Christopher has almost 20 years of experience in sales, customer relations, and corporate operations, including key sales and support roles in various industries ranging from health and fitness to construction. At Shared Assessments, he is responsible for member service, market research, program development, prospective member outreach, membership renewals, and is dedicated to helping members optimize their SIG.
    View full bio
  • Andy Hout
    Vice President, Tool Development & Implementation, Shared Assessments
    Andy has more than 30 years in data communications/information security and is familiar with all types of systems and transport technologies. Using this knowledge, Andy has conducted hundreds of vendor assessments and implemented vendor risk management programs for several large clients.
    View full bio
Register to Watch

Third-Party Risk Briefing And 2023 TPRM Trends

Using current industry metrics and feedback from Shared Assessments members, Shared Assessments subject matter experts will discuss third party risk trends as we head into 2023.
Speakers:
  • Charlie Miller
    Senior Advisor, Shared Assessments
    Charlie Miller is a frequent speaker and a recognized expert in third-party risk. His key responsibilities include expanding the Shared Assessments Third-Party Risk Management membership-driven program, facilitating thought leadership, industry vertical strategy groups, continuous monitoring / operational technology working groups, and loT research studies.
    View full bio
  • Andrew Moyad
    CEO, Shared Assessments
    Andrew is an accomplished leader and trailblazer in third party risk management. As a practitioner and a senior risk management executive, he has driven a culture of accountability and diligence in safeguarding information. Andrew has more than 25 years in risk management and information security. He has contributed greatly to the transformation and advancement of risk management as a strategic function that intersects with and helps guide all aspects of organizations.
    View full bio
  • Colleen Milazzo
    SVP of Third Party Risk Software Products, Shared Assessments
    Colleen leads the TPRM software team in the development of software products/tools for third party-risk assurance. Colleen has over 20 years of experience within the financial services industry and consulting. She has led programs associated with risk management, procurement/contract negotiation, mergers and acquisitions, and business process reengineering. She has regulatory and global experience executing portfolios to meet the corporate strategy.
    View full bio
  • Gary Roboff
    Senior Advisor, Shared Assessments
    Gary Roboff is a Senior Advisor to Shared Assessments where he focuses on payments, risk management, mobile financial services, and information management. Gary has almost four decades of experience in financial services planning and management, including 25 years at JP Morgan Chase where he retired as Senior Vice President of Electronic Commerce. Gary has worked extensively in electronic payments, payments fraud, third party risk management, privacy, and information utilization, as well as business frameworks and standards for electronic commerce applications.
    View full bio
  • Nasser Fattah
    Senior Consultant, Shared Assessments
    Nasser has 20+ years as a Cybersecurity, Supply Chain, and IT leader. With a focus on customer-first and team-building approaches, Fattah is able to align programs to support company strategies, regulatory requirements, and growth initiatives. He drives cybersecurity, supply chain, and IT as enablers for enterprise-wide transformation initiatives. He partners with executives to identify and select strategic external partners to deliver essential IT and cybersecurity services to the business. Nasser worked with global parent companies and subsidiaries to establish technology standards to maximize investments and operations efficacy to best support business needs and growth. Nasser has a strong, consistent record working successfully with Business and IT executives, regulators, auditors, and risk partners. Nasser also teaches cybersecurity at several colleges and is the chair for North America Shared Assessments – an industry best practices for the supply chain.
    View full bio
Become a Member to Watch

Contracts

Organizations increasingly rely on third parties to support a range of business processes, services, and even client interactions. As third parties are increasingly necessary to drive effective business operations, the written agreement between both parties is an essential aspect of managing risk for your organization. This session will dive into best practices around contracts and the TPRM controls to think about when contracting with vendors. Where diligence reviews are often point-in-time exercises with short shelf lives, your third-party contracts govern and endure throughout your full third-party lifecycle.

Cost: Free / Credits: 1 CPE
Speakers:
  • Andrew Moyad
    CEO, Shared Assessments
    Andrew is an accomplished leader and trailblazer in third party risk management. As a practitioner and a senior risk management executive, he has driven a culture of accountability and diligence in safeguarding information. Andrew has more than 25 years in risk management and information security. He has contributed greatly to the transformation and advancement of risk management as a strategic function that intersects with and helps guide all aspects of organizations.
    View full bio
  • James Humphrey-Evans
    UK Founding Partner, Bortstein LLP
    James Humphrey-Evans is one of Bortstein Legal Group’s UK Founding Partners. He negotiates vendor and customer facing technology and commercial contracts, including market data, IT infrastructure, SaaS, outsourcings and facilities agreements. Humphrey-Evans also develops bespoke playbooks and assists clients in defining their legal needs and creating streamlined processes.
    View full bio
Become a Member to Watch

Exchange/Assessment Efficiency

The increased focus on efficiency of Third-Party Risk control assessments, performed on vendors and supply chains requires all organizations to improve their use and integration of products, techniques, and technologies. Regulators are increasing their focus on nth parties and recognize the increased need for more collaboration. This webinar will examine the benefits and challenges of using assessment exchanges and seek to provide guidance to organizations using and or considering the use of a TPRM exchange.
Speakers:
  • Colleen Milazzo
    Senior Vice President, TPR Software Products, Shared Assessments
    Colleen leads the TPRM software team in the development of software products/tools for third party-risk assurance. Colleen has over 20 years of experience within the financial services industry and consulting. She has led programs associated with risk management, procurement/contract negotiation, mergers and acquisitions, and business process reengineering. She has regulatory and global experience executing portfolios to meet the corporate strategy.
    View full bio
  • Charlie Miller
    Senior Advisor, Shared Assessments
    Charlie Miller is a frequent speaker and a recognized expert in third-party risk. His key responsibilities include expanding the Shared Assessments Third-Party Risk Management membership-driven program, facilitating thought leadership, industry vertical strategy groups, continuous monitoring / operational technology working groups, and loT research studies.
    View full bio
  • Chris Paterson
    Director of Strategy, Third-Party Risk CIPP/E, CIPM, FIP, OneTrust
    Chris Paterson serves as Director of Strategy, Third-Party Risk Management at OneTrust, the Trust Intelligence Platform, unlocking every company’s value and potential to thrive by doing what’s good for people and the planet. OneTrust connects privacy, GRC, ethics, and ESG teams, data, and processes, so all companies can collaborate seamlessly and put trust at the center of their operations and culture. In his role, Chris supports the OneTrust GRC & Security Assurance Cloud where he advises companies on how to reduce third party risks and build mutual trust between the business and its vendors. Chris is a Certified Information Privacy Professional and holds CIPP/E, CIPM certifications from the IAPP.
    View full bio
  • Jonathan Dambrot
    Principal, Cyber Security Services, KPMG
Register to Watch

Continuous Monitoring

In today's rapidly evolving complex risk environment the use of continuous monitoring solutions across multiple risk domains has become essential. Continuous monitoring will assist organizations in gaining ongoing assurance that their third and Nth parties control hygiene is in place and operational. This session will explore the future, benefits and challenges of integrating and utilizing continuous monitoring solutions across your Third Party Risk Program.

Cost: Free / Credits: 1 CPE
Speakers:
  • Colleen Milazzo
    Senior Vice President, TPR Software Products, Shared Assessments
    Colleen leads the TPRM software team in the development of software products/tools for third party risk assurance. Colleen has over 20 years of experience within the financial services industry and consulting. She has led programs associated with risk management, procurement/contract negotiation, mergers and acquisitions, and business process reengineering. She has regulatory and global experience executing portfolios to meet the corporate strategy.
    View full bio
  • Charlie Miller
    Senior Advisor, Shared Assessments
    Charlie Miller is a frequent speaker and a recognized expert in third party risk. His key responsibilities include expanding the Shared Assessments Third-Party Risk Management membership-driven program, facilitating thought leadership, industry vertical strategy groups, continuous monitoring / operational technology working groups, and loT research studies.
    View full bio
Become a Member to Watch

The 5 Criteria Essential for Long-Term Third-Party Risk Management Program Success

Your third-party risk management program is on solid footing and bringing in short term success. But how do you keep the momentum going? What does a dynamic, agile program look like? Join Tom Garrubba, Vice President of Shared Assessments, and Alastair Parr, Senior Vice President of Global Products & Services at Prevalent, as they:

  • • Discuss pragmatic, actionable long-term TPRM program goals
  • • Review considerations for appropriate resource planning and constraint management
  • • Show you best practices for business engagement and data collection
  • • Assess mechanisms for improving vendor interaction
  • • Explore how to create consistency in metrics for analysis and reporting
Speakers:
  • Tom Garrubba
    Director, TPRM Professional Services, Echelon Risk + Cyber
    Tom Garrubba is an internationally recognized subject matter expert, lecturer, writer, and blogger on third-party risk, and is the head instructor for the Certified Third-Party Risk Professional (CTPRP) certification program. He is a contributor to Future of Sourcing, blogged for the Huffington Post’s Business section, and for Government Health IT, ISACA, Risk.net, and numerous eGRC websites.
    View full bio
  • Alastair Parr
    Senior Vice President, Global Products & Risk, Prevalent
    Alastair Parr is responsible for ensuring that the demands of the market space are considered and applied innovatively within the Prevalent portfolio. He comes from a governance, risk and compliance background; developing and driving solutions to the ever-complex risk management space. He brings over 12 years of experience in product management, consultancy, and operations deliverables.
    View full bio
Register to Watch

2023 TPRM Toolkit Review

The Shared Assessments Tool Development team and committees have spent the last year updating and upgrading the SIG, SCA, VRMMM, and Data Governance Tools just for you. Members will be the first to receive the special overview.

Cost: Free / Credits: 1.5 CPEs
Speakers:
  • Colleen Milazzo
    Senior Vice President, TPR Software Products, Shared Assessments
    Colleen leads the TPRM software team in the development of software products/tools for third party risk assurance. Colleen has over 20 years of experience within the financial services industry and consulting. She has led programs associated with risk management, procurement/contract negotiation, mergers and acquisitions, and business process reengineering. She has regulatory and global experience executing portfolios to meet the corporate strategy.
    View full bio
  • Andy Hout
    Vice President, Tool Development & Implementation, Shared Assessments
    Andy has more than 30 years in data communications/information security and is familiar with all types of systems and transport technologies. Using this knowledge, Andy has conducted hundreds of vendor assessments and implemented vendor risk management programs for several large clients.
    View full bio
Become a Member to Watch
1 6 7 8 9 10 15