Papers and Studies

Stay on top of the latest in Third-Party Risk Management (TPRM) with Shared Assessments’ papers and studies. Learn industry trends and take away best practices to improve your approach. Read on and rock on, risk management!

Guide: Evolving Work Environments – Impact of Covid-19

In and outside of work, the Covid-19 pandemic was a mandatory exercise in flexibility. What are the workplace shifts we see impacting third-party risk management as we emerge from the pandemic? This guide emphasizes how the pandemic has affected profile and management of third parties by:  Comparing “Pre-Covid” and “Post-Covid” insights  Highlighting the evolution of work […]

Register to Download

Guide: Risk Domains

This guide introduces and defines 21 of the most critical and current risk domains within four key areas. The guide describes why organizations need to acknowledge each risk domain and offers concrete suggestions of how organizations can account for risks presented by each domain.

Register to Download

Guide: Evolving Work Environments

Impact of Covid-19 On Profile and Management of Third Parties In and outside of work, the Covid-19 pandemic was a mandatory exercise in flexibility. What are the workplace shifts we see impacting third-party risk management as we emerge from the pandemic? This FREE guide emphasizes how the pandemic has affected profile and management of third parties […]

Register to Download

Guide To Geopolitical Risk Spotlight on the Russia/Ukraine Conflict

Guide: Geopolitical Risk What does geopolitical risk mean for your organization and third party risk management (TPRM)? The risks emerging from recent Russian aggression against Ukraine have potential consequences for your organization’s Business Continuity, Compliance, Cyber, Data Privacy, Supply Chain, and Technology risks. This guide helps those managing third party risk to understand and manage […]

Register to Download

Risk Quantification: Techniques For The Extended Enterprise

In the current business landscape, organizations rely on numerous third and Nth parties to produce goods and services. The complexity of these outsourcing activities makes it difficult to understand risks across the supply chain. At the same time, new risks are mounting, and the frequency of severe events is increasing placing new demands on risk […]

Register to Download

Third Party Risk Management: Landscape Overview

Third Party Risk Management: Landscape Overview We surveyed more than 600 third-party risk management (TPRM) executives and practitioners directly involved with their organizations’ approach to vendor risk management. This infographic gives an overview of what we learned about trends, challenges, and priorities in risk management.   What Topics Does This Cover? Security and Privacy. Emerging and Cascading […]

Register to Download

Guide: Geopolitical Risk – Spotlight on the Russia/Ukraine Conflict

Geopolitical risk stems from war, terrorism, and even ongoing tensions between states that derail normal and peaceful international relations. Geopolitical risk has an adverse impact on the delicate balance of the world’s economy, security, and political relations. What does geopolitical risk mean for your organization and third party risk management (TPRM)? Risks emerging from recent Russian aggression against Ukraine have potential consequences […]

Register to Download

A Unified Third Party Continuous Monitoring Cybersecurity Taxonomy

This paper provides a unified continuous monitoring cybersecurity taxonomy. A living document designed to evolve with the cybersecurity landscape, the taxonomy advances communication about evaluating and monitoring the impact of cyber threats. Cybersecurity monitoring solution providers, outsourcers, and third party service providers collaborated in Shared Assessments’ Continuous Monitoring Working Group to develop this first version […]

Register to Download

Complex Supply Chains – Gaining Visibility into Nth Party Governance

This briefing paper provides insight into gaining greater supply chain sovereignty by identifying critical dependencies across both inbound and outbound supply chains. Adopting this proactive stance provides many opportunities for organizations, including being ready to respond to the regulatory changes reverberating across industries. The related blog “Nth Party Suppliers – Gaining a Toehold on Down […]

Register to Download

Adaptive Risk Management for Complex Supply Chains

This briefing paper provides a foundation for a more robust TPRM style – one that applies complex adaptive systems to the field of risk management to help practitioners understand step-function, cascading improvements in risk management processes they can apply to their own programs. The related complex chain human resources blog “The Upstream Impact of Downstream […]

Register to Download

Creating a Unified Continuous Monitoring Taxonomy: Gaining Ground by Saying What’s What

This “Gaining Ground” briefing paper is phase one of the two-phase cooperative project led by the Shared Assessments’ Continuous Monitoring working group. This group has galvanized practitioners from 57 member organizations, as well as non-member CM solution providers in the Taxonomy Subgroup, to establish a common set of terms and standards for identifying, alerting and […]

Recently Released: Law Firm Briefing Paper by Shared Assessments

The Shared Assessments Program is pleased to present a briefing paper based on the significance of information security and privacy controls on law firms as third party service providers and collaborative opportunities for resolution. This paper focuses on the issues law firms are facing as they adapt to providing a secure IT environment that meets […]

Register to Download
1 2