Third Party Risk Management - Consultancy, Assessment & Advisory

Shared Assessments launches 2018 Risk Assessment Program Tools

Shared AssessmentsShared Assessments, the trusted source in Third Party risk, today released the latest version of the Program Tools for 2018, which are now available for download via the Members Resources area of the Shared Assessments website.

The Shared Assessments 2018 Program Tools are an important component of the Shared Assessments Third Party Risk Management Framework, and it is the partnership between Shared Assessments and member organisations which creates industry leadership to help meet the surge in regulatory, consumer and business scrutiny within the constant landscape of cyber and other security threats and vulnerabilities posed by the use of Third Party service providers.

A “Trust, but Verify” approach to Third Party Risk

Shared Assessments keeps a close eye on emerging regulations, guidelines and standards for the wide range of industries that our members represent, such as: New York State, Department of Financial Services (NYSDFS) 23 NYCRR 500; European Union (EU) General Data Protection Regulation (GDPR) 2016/679; and Open Web Application Security Project (OWASP) Top Ten 2017 Vulnerabilities RC2 Project. That knowledge is used to update the new Program Tools which embody a “Trust, but Verify” approach for conducting third party risk management assessments and use a substantiation-based, standardised, efficient methodology.

To access the latest versions of the Shared Assessments Program Tools 2018, log into the Member Resources section of the Shared Assessments website by clicking on Member Log In at the upper right-hand corner of the home page. There you will find all of the Program Tools and support documents for:

• 2018 Standardised Information Gathering (SIG) questionnaire;
• 2018 Shared Assessments Standardised Control Assessment (SCA) procedures – Formerly the Agreed Upon Procedures (AUP);
• 2018 Vendor Risk Management Maturity Model (VRMMM); and
• The new EU General Data Protection Regulation (GDPR) Tool Kit

For detailed information about the enhancements, content organisation and updates, and which industry and regulatory standards were included in the update to the 2018 Program Tools, click here.

DVV Solutions are the first UK-based member of the Shared Assessments Program and

Contact DVV Solutions

As a Shared Assessments program member and registered Assessment Firm we utilise industry-standard practices including SCA questionnaires and AUP to help our customers develop and mature their Third Party Risk Management programs. For more information:

Contact Us: Complete our Contact Form

Call Us: +44 (0) 161 476 8700


About the Shared Assessments Program

As the trusted source in third party risk, the member-driven Shared Assessments Program has been setting the standard in third party risk assessments since 2005. Shared Assessments Program members work together to build and disseminate best practices, building resources that give all third party risk management stakeholders a faster, more rigorous, more efficient means of conducting security, privacy and business resiliency control assessments.