Papers and Studies

Stay on top of the latest in Third-Party Risk Management (TPRM) with Shared Assessments’ papers and studies. Learn industry trends and take away best practices to improve your approach. Read on and rock on, risk management!

Third Party Focused Ransomware Strategy: An Enterprise-Wide Collaborative Strategy Guide for TPRM Professionals

This paper provides process and program guidance on meaningful, incremental improvements for organizations of all sizes, whether operating locally or globally. The content is designed for both beginning and seasoned security and TPRM practitioners, with an introduction to help inform C-Suite and Board discussions to determine what is at risk; how to manage those risks; […]

Register to Download

Which SIG Should I Use?

When scoping your Vendor Risk Questionnaires, which SIG should you use? The SIG offers three tiering structures – the SIG LITE, the SIG CORE, and the SIG Detail Questionnaire. This paper defines each of the tiers and their use cases.

Register to Download

Guide: ESG In The 2023 SIG

In our 2023 Third-Party Risk management Product Suite, we have 131 questions that cover Environmental, Social, Governance (ESG) within the Standardized Information Gathering (SIG) Questionnaire. ESG is now its own risk domain which allows users to scope an ESG-specific SIG. You will be able to complete a SIG for your organization and you can use […]

Register to Download

Guide: Evolving Work Environments – Impact of Covid-19

In and outside of work, the Covid-19 pandemic was a mandatory exercise in flexibility. What are the workplace shifts we see impacting third-party risk management as we emerge from the pandemic? This guide emphasizes how the pandemic has affected profile and management of third parties by:  Comparing “Pre-Covid” and “Post-Covid” insights  Highlighting the evolution of work […]

Register to Download

Guide: Risk Domains

This guide introduces and defines 21 of the most critical and current risk domains within four key areas. The guide describes why organizations need to acknowledge each risk domain and offers concrete suggestions of how organizations can account for risks presented by each domain.

Register to Download

Guide: Evolving Work Environments

Impact of Covid-19 On Profile and Management of Third Parties In and outside of work, the Covid-19 pandemic was a mandatory exercise in flexibility. What are the workplace shifts we see impacting third-party risk management as we emerge from the pandemic? This FREE guide emphasizes how the pandemic has affected profile and management of third parties […]

Register to Download

Guide To Geopolitical Risk Spotlight on the Russia/Ukraine Conflict

Guide: Geopolitical Risk What does geopolitical risk mean for your organization and third party risk management (TPRM)? The risks emerging from recent Russian aggression against Ukraine have potential consequences for your organization’s Business Continuity, Compliance, Cyber, Data Privacy, Supply Chain, and Technology risks. This guide helps those managing third party risk to understand and manage […]

Register to Download

Business Case Third-Party Risk Management (TPRM)

Business Case for Third-Party Risk Management (TPRM): A Starting Point For Senior Leadership As part of our ongoing support to the larger, global community of third-party risk practitioners and programs, Shared Assessments and Third Party Risk Association (TPRA) have together prepared The Business Case for Third Party Risk Management (TPRM): A Starting Point for Senior Leadership. At […]

Register to Download

Risk Quantification: Techniques For The Extended Enterprise

In the current business landscape, organizations rely on numerous third and Nth parties to produce goods and services. The complexity of these outsourcing activities makes it difficult to understand risks across the supply chain. At the same time, new risks are mounting, and the frequency of severe events is increasing placing new demands on risk […]

Register to Download

Risk Quantification: Techniques For The Extended Enterprise

What is the Third-Party Risk Quantification paper about? In the current business landscape, organizations rely on numerous third and Nth parties to produce goods and services. The complexity of these outsourcing activities makes it difficult to understand risks across the supply chain. At the same time, new risks are mounting, and the frequency of severe […]

Register to Download

Third Party Risk Management: Landscape Overview

Third Party Risk Management: Landscape Overview We surveyed more than 600 third-party risk management (TPRM) executives and practitioners directly involved with their organizations’ approach to vendor risk management. This infographic gives an overview of what we learned about trends, challenges, and priorities in risk management.   What Topics Does This Cover? Security and Privacy. Emerging and Cascading […]

Register to Download

Third-Party Risk Management: Landscape Overview

We surveyed more than 600 third-party risk management (TPRM) executives and practitioners directly involved with their organizations’ approach to vendor risk management. This infographic gives an overview of what we learned about trends, challenges, and priorities in risk management.

Register to Download
1 2 3 4 6