CONTACT US
Third Party Risk Management - Consultancy, Assessment & Advisory

Blog

Applying a Risk Management Approach to Evaluating Cloud Technologies

Evaluating Cloud Risk In the past five years, we have seen tremendous changes in technology, personnel and business practices. Cloud has now become the de-facto industry model for providing computing services. Mobile has become the most common model for accessing data. Cloud platforms are managing billions of Internet of Things (IoT) devices daily, and new…

LEARN MORE

Why EVERYONE Needs To Be Concerned About Vendor Security

Why EVERYONE Needs To Be Concerned About Vendor Security We are continuing to learn more about the breach at Larson Studios which resulted in the release of 10 episodes of Orange Is The New Black (OITNB) as well as other titles from Netflix, ABC, CBS, and Disney. While the analysis of the event in Variety…

LEARN MORE

Evaluating Cloud Risk for the Enterprise – An Updated Shared Assessments Guide

Shared Assessments has released its updated guide to Evaluating Cloud Risk for the Enterprise. Using this Cloud Guide, risk managers can begin to evaluate specific areas of cloud risk, ask the right questions and ensure they get answers they understand. Executive Summary This Guide is the second iteration of the Evaluating Cloud Risk for the Enterprise,…

LEARN MORE

A new era of threats from IoT Third Party Risk

Ready or Not – IoT Third Party risks have arrived Research conducted by The Ponemon Institute, and shared in a study from Shared Assessments, has found that efforts to mitigate IoT Third Party risks need to significantly improve. The research highlights the fact that companies are relying on legacy technologies and governance practices to address potential…

LEARN MORE

GDPR – 1 year to go – Started preparations? Great. But how’s your Third-Party Risk?

A few thoughts on GDPR and Third Party Risk – A year today, on May 25th 2018 the biggest change to data protection law in 20 years will kick in. The EU General Data Protection Regulation (GDPR) is its replacement. By now you know the risks – any breach of Personally Identifiable Information (PII) can result in new penalties…

LEARN MORE

Third Party Risk Rating – Setting Expectations for your Third Parties

Third Party Risk Rating During On-Boarding Including Third Party risk rating as a strategic part of a robust risk management program provides the opportunity for early identification of the wide range of issues that ripple through both regulated and unregulated industries wherever outsourcing is present. Scoring third parties consistently was ranked as the most challenging…

LEARN MORE

Seven Stages to Vendor Risk Management

A few thoughts on Vendor Risk – One of the key problem areas of enterprise risk management is vendor risk. Managing hundreds to thousands of vendors, suppliers, outsourcers and other third-party relationships is difficult in the best of financial times. With shrinking budgets and fewer staff, how can vendor risk management be performed correctly? These…

LEARN MORE

Just 2 Years to go until EU GDPR – Time to start your 7 steps to Managing Third-Party Risk?

A few thoughts on GDPR and Managing Third Party Risk – Today marks the 2 year countdown until EU General Data Protection Regulations (GDPR) come into full effect. GDPR will expand and extend the current data protection requirements for anyone processing Personally Identifiable Information (PII).  The regulation introduces some tough new penalties of fines of…

LEARN MORE