Webinar Archive

Taking the Pulse of Nth Parties in a Post-COVID World

Date: 2/17/2021

Time:

Speakers:

• Tom Garrubba, Vice President and CISO, Shared Assessments
• Brad Keller, Senior Vice President & CSO, Shared Assessments
• Sean O'Brien, Managing Director, DVV Solutions
• James Arnold, Manager, Americas Data Privacy & Protection Compliance, MUFG
• 
  
  

Description:

As COVID has highlighted supply chain challenges, concern has grown around how third party risk professionals are monitoring their downstream or “Nth” parties. This webinar offers an overview of the tools and techniques used by experienced risk professionals to measure and address the risks introduced by vendors of vendors. With practical ways to identify and manage fourth parties, you will get a better sense of your threat radar as you ensure your Nth parties are in alignment with your risk posture.

Resources :

Taking the Pulse of Nth Parties in a Post-COVID World

Please register to access resources.

Sponsored By:

View

SolarWinds - A Fireside Chat on Establishing a Third Party Vulnerability Campaign

Date: 2/11/21

Time:

Speakers:

• Tom Garrubba, Vice President and CISO, Shared Assessments
• Frank Roppelt - Senior Manager, Security Policy and Vendor Risk at TD Ameritrade
• Rocco Grillo, Managing Director - Global Cyber Risk & Incident Response Investigation Services, Alvarez & Marshal
• Daniel Cuthbert, Global Head of Cyber Security Research, Banco Santander
• Jaymin Desai, Global Head of Third-Party Risk, OneTrust Vendorpedia™
• 
  
  

Description:

The recent SolarWinds Orion event points to the need for companies to establish a sound and repeatable process to deal with vulnerabilities as part of their third party risk strategy. In this fireside chat, Shared Assessments SMEs converse with industry TPR and security experts on how to prepare, execute, and report on the vulnerability status of third parties.

Resources :

SolarWinds - A Fireside Chat on Establishing a Third Party Vulnerability Campaign

Please register to access resources.

Sponsored By:

View

Metrics - Sharing Your TPRM Story With Management

Date: 1/14/21

Time:

Speakers:

• Cliff Vachon, Sr. Manager, Global Security - Third Party Risk Governance, CVS Health
• Philip Bennett, Manager Information Security Governance, Horizontal Services, Navy Federal Credit Union
• Nasser Fattah, US Steering Committee Vice Chair, Shared Assessments,Cyber, IT, and Third-Party SME
• Tom Garrubba, Vice President, Shared Assessments

Description:

In business, you need good metrics in order tell the story of your program, both its successes and challenges. Metrics reporting on third-party management tell their story over time and can show evolution and give you confidence in its effectiveness. By tracking the correct metrics, you’ll be able to show the growth in raw data to the C-suite and Board of Directors.

Resources :

Metrics - Sharing Your TPRM Story With Management Slide Deck

Please register to access resources.

Sponsored By:

View

Reporting - Evidence Your TPR Programme’s Value

Date: 7/2/2020

Time:

Speakers:

• Jaymin Desai, Third Party Risk Management Offering Manager, OneTrust
• Nasser Fatah, Shared Assessments U.S. Steering Committee Vice Chair, Cyber, IT and Third Party SME
• Sean O’Brien, Managing Director, DVV Solutions and Shared Assessments UK-Steering Committee Member
• Tom Garrubba, Vice President, Shared Assessments

Description:

Reporting drives critical business decisions. Presenting a cohesive report allows you to communicate to your direct management, C-suite, and Boardroom your programme’s value and maturity to the overall strategy of the organisation.

Sponsored By:

View

Continuous Monitoring

Date: 6/4/2020

Time:

Speakers:

• Nasser Fattah, U.S. Steering Committee Vice Chair - Shared Assessments, Cyber, IT and Third Party SME
• David Brintworth, Info Security Manager, Iron Mountain-UK, Shared Assessments U.K. Steering Committee Member
• Jaymin Desai, Third Party Risk Management Offering Manager, OneTrust
• Charlie Miller, Senior Advisor, Shared Assessments

Description:

Organisations that make continuous monitoring of critical vendors a part of their holistic security and lifecycle-based risk management programme more frequently achieve business objectives. In this webinar, we will outline best practices to monitor critical vendors through continuous monitoring.

Sponsored By:

View

Get Off Of My Cloud

Date: 5/7/2020

Time:

Speakers:

• Tom Garrubba, Senior Director/CISO, Shared Assessments
• Kara Shirdon, Azure Application Development Specialist, Microsoft
• Fiona O’Brien, Head of Outsourcing Oversight & Governance, Bank of Ireland Group

Description:

You and your vendors have likely migrated critical applications, customer data and work to the Cloud environment. During this webinar, we will discuss current threats, vulnerabilities and risks and the right questions to ask Cloud Security Providers regarding security, maintenance and resilience in order to keep the Cloud (and more importantly, your risk management) in check.

Sponsored By:

View

Guide To Contracting

Date: 4/9/2020

Time:

Speakers:

• Jaymin Desai, Third-Party Risk Management Offering Manager, OneTrust
• Eric Hess, Managing Partner, Hess Legal Counsel
• Brad Keller, Chief Strategy Officer & Sr. Vice President, Shared Assessments

Description:

Ensure your contracts contain sufficient detail to protect against business, reputational and environmental threats. Your contracts must flex with new regulations and the changing risk landscape. Understand the key elements and best practices for solid contracts with third parties.

Sponsored By:

View

Third Party Risk Management Programme Fundamentals

Date: 3/19/2020

Time:

Speakers:

• Nasser Fattah, Cybersecurity and IT Risk Management Executive, MUFG
• Gary Roboff, Senior Advisor, Shared Assessments
• Jaymin Desai, Third-Party Risk Management Offering Manager, OneTrust
• Tom Garrubba, Senior Director/CISO, Shared Assessments

Description:

Polish your risk posture with a review of the fundamentals: policies, procedures and practices. This webinar offers a foundational overview of a comprehensive third party risk management programme.

Sponsored By:

View

Procurement Versus the CISO: Balancing Third-Party Risk Program Priorities

Date: 6/16/2020

Time:

Speakers:

• Tom Garrubba, Vice President, The Santa Fe Group, Shared Assessments Program
• John Tondreau, Senior Director Customer Success, ProcessUnity

Description:

Today’s Third-Party Risk Management programs need to support requirements from the Chief Procurement Officer and the Chief Information Security Officer. Both individuals and their teams need to understand the risk that comes from vendors and their services, but for very different reasons.

Presented in partnership with ProcessUnity, learn how to balance your Third-Party Risk Management processes to support both procurement and information security priorities. Our team of experts will discuss how to implement an integrated approach that ties pre-contract due diligence with ongoing monitoring activities to create a mature, cross-functional program.

Attendees will learn how to:

Identify risk domains important to each functional group and incorporate into due diligence activities

Reduce onboarding cycle and improve assessment of vendor performance

Establish and track the maturity of programs while gaining understanding of day to day activities of TPRM

Integrate subject-matter experts into TPRM processes to improve assessment quality

Map vendor risk to internal risk and compliance frameworks

Two business functions with different charters and goals - join us for practical advice on how to bridge the gap with your Third-Party Risk program.

Resources :

Procurement Versus The CISO: Slide Deck

Please register to access resources.

Sponsored By:

View