On-Demand Events

The Digital Operational Resilience Act (DORA) affects US-based organizations that provide financial services in the EU or offer third-party services to EU financial services companies. This session ai ...

Evaluating appropriate ways to conduct risk assessments beyond your 3rd parties, by understanding your added exposures to 4th and Nth parties. Join us to uncover actionable insights for prioritizing c ...

We’ve all got our pet peeves when it comes to third-party risk management, and they’re not just annoying—they’re getting in the way of better, safer business outcomes. In this session, you’l ...

Traditional vendor assessments are slow, incomplete, and overwhelmed by growing vendor numbers. Forward-thinking TPRM teams are changing the way they approach vendor assessments and revolutionizing th ...

This session will feature an overview of the 2024 Shared Assessments Product Family as well as the brand-new Third-Party Service Inherent Risk Rating (TPSIRR) solution. We will review current regulati ...

The Federal Reserve Board (the Board), Federal Deposit Insurance Corporation (FDIC), and Office of the Comptroller of the Currency (OCC) collectively introduced the Interagency Guidance on Third-Party ...

In today's interconnected world, geopolitical risk can have a significant impact on businesses of all sizes. This webinar will explore how to operationalize geopolitical risk analysis to make better d ...

To build an efficient third-party risk management (TPRM) program, its critical to prioritize which vendors and suppliers present the most risk, as well as which ones are essential to your operations. ...

With the unprecedented growth of vendor data breaches and supply chain disruptions, organizational leaders want greater visibility into their third-party ecosystems. Few security and risk professional ...

As the focus on third-party risks continues to intensify, pressure on internal audit to provide insights into TRPM programs is also increasing. The good news is that third-party risk management tools ...

Third-Party Risk Management programs must manage a delicate balance between keeping up with new threats, navigating the evolving regulatory landscape, introducing new technologies, and always trying t ...

Artificial Intelligence (AI) and Machine Learning (ML) technologies are evolving rapidly, bringing the potential to transform Third Party Risk Programs and paving the way for remarkable efficiencies. ...

Managing the third-party lifecycle involves stakeholders across many business units: information security, privacy, legal, finance, procurement, and others. When these teams collaborate to streamline ...

This is a quick introduction to the Standardized Information Gathering (SIG) Questionnaire. In less than 15 minutes, this recording presents how to:

In today’s digital age, cyber threats are a rising concern to organizations, ransomware being one of the most insidious of those threats. Join subject matter experts from Shared Assessments and Digi ...

This session explores how to simplify meeting reporting obligations for the most impactful third-party risk management regulations and requirements including GDPR, CCPA, HIPAA, and SOX. The right risk ...

Time is a valuable resource, especially when trying to manage a third-party risk program at scale. With countless third parties to manage, hundreds of assessments to send, and even more risks to analy ...

Shared Assessments will provide guidance to program managers and risk professionals for optimizing the efficiency and maturation of strategic supplier management programs. Examining how standards and ...

From speculating that vendors have terrifying security posture to guessing that vendors have water-tight security practices, organizations make assumptions around cybersecurity too often. What does th ...

In this session, we will show the ESG SIG product alongside a discussion of use cases, key features and benefits. We will touch on the regulations, standards and frameworks mapped to by the ESG SIG an ...

The “cloud-first” strategy at many companies today translates into an ever-increasing number of third-parties, and even greater number of risks. While cybersecurity technology is better than ever, ...

We’ll discuss:

• • Why ESG matters to third party (and Nth party) risk management
• • EU and German Supply Chain Due Diligence Regulations (environment and human rights) and w ...

Leveraging third parties can lead to significant efficiencies, but it is not without risk. This session will explore criteria used to establish inherent risk and provide approaches for assessing a cri ...

A year marked by an increase in supply chain disruptions, 2022 left many organizations reeling in its aftermath. The New Year offers a chance for companies to prepare for a new wave of disruption and ...

InfoSec, IT risk and digital supply chain management professionals know the key to minimizing the risk of third-party breaches: implementing a comprehensive and efficient third-party security risk man ...

Shared Assessments has updated and upgraded the 2023 Third Party Risk Management Product Suite to align with a changing regulatory and threat environment. Content has been adjusted to focus on Cyberse ...

The increased focus on efficiency of Third-Party Risk control assessments, performed on vendors and supply chains requires all organizations to improve their use and integration of products, technique ...

Your third-party risk management program is on solid footing and bringing in short term success. But how do you keep the momentum going? What does a dynamic, agile program look like? Join Tom Garru ...

In third-party risk management, to lower vendor and supplier risks to an acceptable level, practitioners must recognize which controls need to be in place. Understanding the types of vendors being onb ...

Vendor onboarding is an essential early step in the third-party risk management lifecycle. What types of risk insights are helpful as you establish approved providers of technology, goods, or services ...

Just as managing the risk of your direct suppliers is critical, understanding the risk of your suppliers' suppliers is imperative. While you may work most directly with secure third-party vendors and ...

Join Tom Garrubba and Paul Poh for a lively discussion about innovations that could change the way application developers approach common security pitfalls.

This session will explore applic ...

Third parties operate globally, in unpredictable landscapes and geographies. As localized geopolitical events emerge, businesses need to react and adjust to ensure resilience of the supply chain and s ...

Modern businesses rely on numerous third parties and their supply chains to keep their businesses running. But many lack robust processes to assess and understand how these supply chains can pose addi ...

After nearly two years of responding to constant disruption, many organizations are now reevaluating how their TPRM programs comply with surging regulations and adapt and respond to emerging risks. So ...

As more companies incorporate ESG across corporate programs, third party risk managers need to explore how new ESG regulations and standards will impact their third party risk management programs. Thi ...

Business Continuity is constantly under attack from rising natural disasters, software and hardware failures, escalating and increasing instances of cyberattacks, and all the risks that accompany them ...

ESG fallout from the crisis in Ukraine has been considerable; nations and organizations under pressure have taken short term actions at odds with stated ESG goals. Until now, the geopolitical impact o ...

Reports on the increasing frequency of cyber threats have become daily fodder for the news media. High impact cyber attacks are portrayed as being carried out by organized, sophisticated, and delibera ...

Increased vendor breaches, supply chain disruptions, and amplified regulatory scrutiny require third party risk professionals to evolve in their roles. This session will cover an 18-month outlook of ...

The increasingly complicated Russia-Ukraine crisis has triggered a rise in cyberattacks against Ukrainian interests and Ukrainian-allied governments, forcing organizations to bolster their enterprise ...

Please join us as Shared Assessments, BitSight Technologies, Black Kite, Panorays, RiskRecon, SecurityScorecard, and 23Advisory LLC present the Cybersecurity Taxonomy for Continuous Monitoring, which ...

This session will be the first in a series of Fireside Chats featuring third party risk professionals sharing innovation success stories. Join Randy Sabbagh, Vice President, Global Incident Management ...

Video from Compliance Week’s Cyber Risk and Data Privacy Summit 2022.

A continuous monitoring cybersecurity strategy for third party risk management (TPRM) goes a long way toward proactiv ...

As regulations, industry standards, and business strategies continue to shift, data governance is becoming more difficult to support, especially with your vendors. Data governance includes setting int ...

Cyberattacks on the supply chain have become a board-level issue for organizations and will continue to plague executives in 2022. The number and sophistication of security breaches is rising; attacks ...

As Risk Management has developed into a central business issue, senior management has become interested in understanding the risk environment.

In this session, we will cover what metrics r ...

The recent Log4j vulnerability has taken on the role of the Grinch, leaving the world spinning before the holidays. This fireside chat, led by industry security professionals, will feature a discussio ...

Implementing key performance indicators (KPIs) and key risk indicators (KRIs) that are meaningful to leadership and the board – as well as truly actionable – are the backbone of a successful third ...

Cybersecurity and third party risk professionals are growing increasingly concerned over the risk cyber attacks pose to supply chains. The fallout from a single attack on a supplier triggers a chain r ...

Shared Assessments has updated and upgraded the 2022 Third Party Risk Management Toolkit to align with a changing regulatory and threat environment. Content has been adjusted to focus on Cybersecurity ...

Third party risk management programs are being tasked to assist their organizations' ESG (environmental, social, and governance) efforts with their most critical suppliers and vendors, leaving TPR tea ...

Large scale supply chain disruptions. Ransomware attacks. SolarWinds. Kaseya. Remote assessments for the time being. The third-party risk climate is continually changing – but how has your organizat ...

Outsourcers and vendors suffer when targeted performance goals are not met, often forcing a termination of the relationship. This webinar will focus on strengthening contract language to ensure that y ...

With the recent cyber attack on food supply giant JBS, ransomware has officially become a topic of dinner table discussion. As ransomware continues to dominate headlines and draw federal and internati ...

The lock down caused by the pandemic has forced all companies to deploy some type of virtual work force, effectively eliminating the ability to conduct on-site risk control assessments. How have risk ...

Even without a global pandemic impacting supply chains, vendor business resilience and availability should be top-of-mind for all organizations. Vendor business resilience plans should be revisited re ...

We hear the same common challenges from third party risk managers implementing Continuous Monitoring into their programs. In this session we will hear from third party risk and Continuous Monitoring e ...

In third party risk circles, successful partnerships are not just about cultivating outsourced relationships - successful partnerships are about internal relationships as well. The symbiotic relations ...

Join Shared Assessments CEO Cathy Allen and OneTrust CEO Kabir Barday as they discuss how Shared Assessments plans to grow as a part of OneTrust. The two will cover: - Why the market needs third-pa ...

2020 was an unprecedented year for supply chain disruptions. And while we could not have foreseen the impact that the pandemic would have on our third-party relationships, there are several lessons to ...

As COVID has highlighted supply chain challenges, concern has grown around how third party risk professionals are monitoring their downstream or “Nth” parties. This webinar offers an overview of t ...

The recent SolarWinds Orion event points to the need for companies to establish a sound and repeatable process to deal with vulnerabilities as part of their third party risk strategy. In this fireside ...

In business, you need good metrics in order tell the story of your program, both its successes and challenges. Metrics reporting on third-party management tell their story over time and can show evolu ...

Reporting drives critical business decisions. Presenting a cohesive report allows you to communicate to your direct management, C-suite, and Boardroom your programme’s value and maturity to the over ...

Today’s Third-Party Risk Management programs need to support requirements from the Chief Procurement Officer and the Chief Information Security Officer. Both individuals and their teams need to unde ...

Organisations that make continuous monitoring of critical vendors a part of their holistic security and lifecycle-based risk management programme more frequently achieve business objectives. In this w ...

You and your vendors have likely migrated critical applications, customer data and work to the Cloud environment. During this webinar, we will discuss current threats, vulnerabilities and risks and th ...

Ensure your contracts contain sufficient detail to protect against business, reputational and environmental threats. Your contracts must flex with new regulations and the changing risk landscape. Unde ...

Polish your risk posture with a review of the fundamentals: policies, procedures and practices. This webinar offers a foundational overview of a comprehensive third party risk management programme. ...