Prevalent “leads the pack with a third-party risk management platform” DVV Solutions technology partner – Prevalent, Inc, the leader in third party risk management – has been recognised by Forrester as a “Leader” in their latest research report: The Forrester New Wave™: Cybersecurity Risk Ratings Solutions, Q4 2018. The report recognises Prevalent as a Leader…
LEARN MOREIllustrating the value of a robust TPRM framework for the Financial sector DVV Solutions, specialists in Third Party Risk Management, are proud to announce their sponsorship of UK Risk Network – one of a series of forums for the development of Enterprise Risk strategy development across the European Financial sector. Held at Sopwell House, Hertfordshire,…
LEARN MOREShould cyber insurance cover GDPR fines? I see the interesting debate around whether GDPR fines should be covered within corporate cyber insurance policies has raised its head again. See Law360’s GDPR Fines May Be Uninsurable, Broker Warns and Are GDPR Fines Insurable? UK Watchdog Won’t Say With increasing regulation and scrutiny placed on organisations and…
LEARN MOREExpect the Unexpected: 5 Keys to Managing Third Party GDPR Risk As the European Union’s (EU’s) General Data Protection Regulation (GDPR) May 25 effective date approached this spring, its sweeping compliance requirements socked companies with major surprises. The regulation’s global jurisdictional reach, EU-specific definition of “sensitive data,” steep penalties, hefty compliance costs, and applicability to…
LEARN MOREA security incident at The Pennsylvania Department of Corrections has compromised the personal information of a seemingly “vulnerable population” Recently, Accreditation, Audit, and Risk Management Security LLC, an online systems vendor for the Pennsylvania Department of Corrections, suffered a data breach that exposed the Personally Identifiable Information (PII) – including names, Social Security Numbers, medical…
LEARN MORE3rd party vendor relationships present plenty of opportunities for cybercriminals Digital transformation is imperative for any business striving to deliver value to customers and remain relevant in fiercely competitive landscapes. Whether moving an existing infrastructure to a cloud platform or incorporating IoT devices and analytics into business models, these technologies enable organisations to increase…
LEARN MORENew Third Party Risk Assessor Certification The Shared Assessments Program announces an expansion to its certification program to include the new Certified Third Party Risk Assessor (CTPRA) designation. This individual certification validates skills and knowledge within specific IT risk controls that an experienced assessor needs in order to perform a thorough risk assessment of…
LEARN MOREShared Assessments has released it’s latest White Paper – Building Best Practices: Third Party Contract Development, Adherence & Management. This paper documents best practices for streamlining Third Party contract development, approval, exceptions and addendums processes, examines the need for actionable contracts and shows how they can be written and managed across the relationship lifecycle from both…
LEARN MOREArticle written by Sean O’Brien CTPRP, Director, DVV Solutions A common question I receive from clients as part of Third Party risk management (TPRM) program development is the best way to manage the inbound requests to complete risk assessments from their own clients. My answer is very simple. “Practice what you preach”. Treat client requests…
LEARN MORE4th Party Vendor Breach Strikes Again Security can’t be looked at only inside the firewall; it must be accounted for throughout an organization’s entire business network Last week’s Ticketmaster breach is a classic example of the challenges companies face to effectively manage vendor risk. Very few companies manage their online ticket sales. That job is left…
LEARN MORE