The Shared Assessments Third Party Risk Management Toolkit was built by member practitioners, for practitioners. Leveraging diverse industry experience and relationship perspective, the toolkit embodies a “Trust, but Verify” approach based on vetted, standardized methodology.
The SIG follows industry best practices for assessing 18 critical risk domains of vendors including information technology, cybersecurity, privacy, resiliency and data security risks.Subscribe
The SCA assists risk professionals in performing onsite or virtual assessments of vendors. The SCA mirrors the 18 critical risk domains from the SIG, and can be scoped to an organization’s needs.Subscribe
The VRMMM is a tool for evaluating maturity of third party risk programs. This tool is free for members and non-members and measures programs against a comprehensive set of best practices.