Landing Pages

CPE Webinar:

Key Steps to Mature Your Third-Party Risk Management Program

Hi [fname],

High-Profile Data Breaches have placed a spotlight on the risk of cyber security breaches with vendors and subcontractors, expanding the need to have greater rigor in third party risk management and ongoing risk assessments. Maintaining an effective third-party risk management program doesn't happen overnight. It's a journey that involves continual learning, refinement and evolution.

And as a program matures over time, it results in the management of vendors and other third parties with fewer risks, lower costs, better performance and stronger compliance. Since every company is at a different place in their journey towards better vendor management, it's important to identify steps that you can follow as you mature your program, and to consider your vendor risk ecosystem and the data and services that can have an enormous impact on risk reduction. On this CPE accredited webinar our panel of experts will address some key steps to mature your third-party risk management program.

Attend live to earn 1 CPE Credit and learn how to:

Create a third-party risk-management maturity roadmap,
Connect with enterprise systems to create a centralized data repository and enable seamless vetting activities across processes,
Incorporate external content sources for a more wholistic view of your vendors plus more sustainable ongoing monitoring,
Strengthen and streamline your third-party risk management efforts.

Speakers:

Colin Whittaker (Moderator), Founder and Director at Informed Risk Decisions;
Todd Boehler, VP of Product Strategy, at Process Unity;
Mark Deluca, SVP at Coupa;
Chris Poulin, Principal Consulting Engineer at BitSight;
Jason Sabourin, Product Manager at OneTrust.

About the IT GRC Forum
CPE The IT GRC Forum is the premier online resource for Governance, Risk Management, and Compliance (GRC) Executives. We produce educational events and provide market intelligence for our members, and offer CPE credits via our programs. Executive IT Forums, Inc, is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education.

Address: 1 Penn Plaza, Suite 6272, West 34th Street New York, NY 10119

Phone: (646) 525-4801 | Visit us at www.executiveitforums.org

Vendor Risk Management Solution Checklist

As companies continue to outsource more aspects of their operations to third parties, they expose themselves to more shared risk. Most organizations understand the need to automate vendor risk management (VRM) activities to keep up with increasing scope and scrutiny. Yet they struggle to identify and prioritize the key features their VRM solution must provide so they can make a significant impact quickly.

To help with this challenge this checklist outlines features to look for in a VRM solution and explains key areas where you can start mitigating vendor risk today.

Download your checklist now >>

Address: 1 Penn Plaza, Suite 6272, West 34th Street New York, NY 10119

Phone: (646) 525-4801 | Visit us at www.executiveitforums.org

Research

pdf Cloud Risk Surface Report (1.54 MB)

Navigating safely in cloudy condition

This report (re)uses the same data set behind the Internet Risk Surface Report. It is derived from RiskRecon’s work in providing companies objective visibility into their third-party cybersecurity risk. For each organization analyzed, RiskRecon trains machine learning algorithms to discover internet facing systems, domains, and networks. For every asset discovered, RiskRecon analyzes the publicly accessible content, code, and configurations to assess system security and the inherent risk value of the system based on attributes such as observable data types collected and transaction capabilities. RiskRecon provided Cyentia a large anonymized sample of their production data set for this research.

Having studied several broad aspects of the Internet risk surface, we now seek to narrow the focus to consider how the cloud shapes that surface. The benefits of migrating data, workloads, applications, and business processes to the cloud are incredibly compelling. But as a steady string of headlines reporting large data exposures from cloud environments suggest, those benefits don’t come risk-free. Is the risk worth it? To help you answer that for your organization, we leverage a massive dataset supplied by RiskRecon spanning 18,000 organizations and over 5 million hosts yielding 32 million security findings. Read on for a preview of the fascinating facts and figures we share in this report.

pdf Download (1.54 MB)

About the IT GRC Forum

The IT GRC Forum is an online resource and networking platform for Governance, Risk Management, and Compliance (GRC) Professionals. We produce educational events and provide market intelligence for our members, and it is our goal to help industry stakeholders, government regulators, and end-users better understand and manage the increasingly complex GRC landscape across their organization. Visit us at www.executiveitforums.org

How to integrate GRC processes to deliver transformational value

GRC professionals face a risk landscape that is familiar, yet constantly evolving. This state of change is an opportunity to develop new processes, implement new technology, and address process issues.

This white paper examines key opportunities to leverage change—both from a risk and an organizational performance management perspective. It also provides you with a step-by-step approach to build integrated, data-driven governance, risk management, and compliance processes that deliver real value to your organization.

Download Now!

Address: 1 Penn Plaza, Suite 6272, West 34th Street New York, NY 10119

Phone: (646) 525-4801 | Visit us at www.executiveitforums.org

Strategy to Tactics: How to Tackle Third-Party Risk Management

The use of third-party vendors has increased exponentially, exposing organizations to high-profile risks like never before. This is why third-party risk management (TPRM) now consistently features on board agendas in forward-thinking companies.

Join this virtual event and discover how to build a strategy and implement practical tactics to tackle the common challenges of TPRM.

Session 1: Strategy | Your blueprint for an effective TPRM strategy
Get a blueprint for building an effective, cross-functional strategy for managing third parties in today’s dynamic environment of evolving business, regulatory, and risk challenges.

Session 2: Tactics | Why automation is key to a successful TPRM process
Discover how to automatically collect and screen vendor information so you can more effectively mitigate risk and provide a consistent onboarding process.

Session 3: Demo | How to minimize and manage your third-party risk exposure
See how the Galvanize solution, ThirdPartyBond, automates the entire TPRM lifecycle—from onboarding, assessment, and remediation, to performance monitoring and ongoing review.

Address: 1 Penn Plaza, Suite 6272, West 34th Street New York, NY 10119

Phone: (646) 525-4801 | Visit us at www.executiveitforums.org

Research

pdf GDPR for Third-party Risk Management eBook (5.68 MB)

Everything you need to know to stay compliant

Europe’s GDPR is widely-discussed in today’s news cycles and for good reason. The regulation impacts many organizations throughout the world, and violations of the regulation can result in material fines. One big question remains for many businesses, how do third-party services fit into this new regulation and what can organizations do to protect themselves from third-party risks to meet the standards?

In this eBook we explore three key topics related to GDPR:

How organizations go from violations to fines
What the new fines mean for you and what your organization can do
Third-party risk management obligations

pdf Download (5.68 MB) a complimentary copy of the eBook now to learn how to stay GDPR compliant.

About the IT GRC Forum

White paper: Enforcing data privacy in the digital world

Emerging technologies like the Internet of Things (IoT) and artificial intelligence (AI) have changed how organizations collect, process, and use data—creating more vulnerabilities for sensitive data to be misused. Data privacy laws have been designed to protect this information, but these changing regulatory requirements present IT professionals, like you, with new privacy and compliance challenges.

In this white paper you’ll discover actionable steps to build a strong and defensible position to protect your organization’s most important assets.

You’ll learn:

How to build a strong regulatory data governance model
The impact of failing to implement regulatory data privacy controls
How technology can be the silver bullet in a well-established data protection model

Download Now!

Address: 1 Penn Plaza, Suite 6272, West 34th Street New York, NY 10119

Phone: (646) 525-4801 | Visit us at www.executiveitforums.org

Live webinar: Is your IT VRM program ready for 2020?

The new year is just around the corner. Do you know which trends and technologies will hit your organization the hardest—and increase its vendor risk exposure the most? Equip yourself with the right industry research and tactics to improve your IT vendor risk management (VRM) strategy.

Join us online on December 11th to find out if your IT VRM program is ready for 2020. In this session, we’ll discuss how to approach VRM in a climate of digitalization and diverse emerging technologies (think cloud, mobile, AI, and IoT). Plus, you’ll hear real-life lessons learned to help you build a strong VRM program for your organization.

Key takeaways:

• The emerging trends affecting IT VRM and how to respond

• Which areas to invest in to enhance your IT VRM program

• How to get stakeholder buy-in when making program changes

• The common challenges and pitfalls to avoid in your IT VRM strategy

• How technology helps you focus on what matters most

Address: 1 Penn Plaza, Suite 6272, West 34th Street New York, NY 10119

Phone: (646) 525-4801 | Visit us at www.executiveitforums.org

The 2019 Gartner Magic Quadrant for IT Vendor Risk Management Tools

Most organizations today are looking for opportunities to use new technologies like cloud, mobile, AI and IoT to better serve customers, grow revenues, and cut costs. As a result, IT departments must increasingly rely on external vendors—which introduces new, unprecedented risks.

Managing these risks is an ongoing challenge for many risk and security professionals. Having the right tools and processes in place is critical for success.

The Gartner Magic Quadrant for IT Vendor Risk Management Tools is an evaluation of 16 solutions within the growing IT vendor risk management landscape. We believe it will help you identify solutions that will improve the efficiency, effectiveness, and confidence in your vendor risk processes. Download the full report to evaluate this growing and dynamic technology market.

Download your copy »

Report: Forrester Wave™ for Governance, Risk, and Compliance Platforms, Q1 2020

The world’s most influential businesses prioritize IT security, risk management, compliance, and assurance. To do this, they use powerful governance, risk, and compliance (GRC) software—it’s the only way to collect, operationalize, and report on the massive amounts of data now common within organizations.

Can your current systems keep up with your organization’s evolving risk and compliance needs?

Get your complimentary copy of the Forrester Wave™ report for GRC platforms and see why Galvanize was named a Leader.

The report includes:

An in-depth evaluation of 12 GRC software solutions
Tips for choosing the right software solution for your needs
An overview of opportunities and challenges of implementing a GRC platform

Get the report >>

Address: 1 Penn Plaza, Suite 6272, West 34th Street New York, NY 10119

Phone: (646) 525-4801 | Visit us at www.executiveitforums.org

Research

pdf The Forrester New Wave™: Cybersecurity Risk Rating Solutions, Q4 2018 (703 KB)

The Nine Providers That Matter Most And How They Stack Up

In Forrester’s evaluation of the emerging market for cybersecurity risk rating solutions, we identified the nine most significant providers in the category — Bitsight, Fico, iTrust, Normshield, Panorays, Prevalent, Riskrecon, SecurityScorecard, and upGuard — and evaluated them. This report details our findings about how well each vendor scored against 10 criteria and where they stand in relation to each other. Security and risk (s&r) professionals can use this review to select the right partner for their cybersecurity risk rating solution needs.

Key Takeaways

Forrester’s research uncovered a market in which Bitsight, RiskRecon, Prevalent, and SecurityScorecard are leaders; Panorays and Fico are strong Performers; and upGuard, Normshield, and iTrust are challengers. Risk Analytics, entity Attribution, and Rating Consistency are key differentiators. The best cyber-risk rating solutions don’t merely report on your third-party partners’ security flaws, they contextualize and prioritize the risk information they collect so you can more strategically allocate resources and mitigate risk.

pdf Download (703 KB)

About the IT GRC Forum

ProcessUnity Scores Highest in Gartner Review of IT Vendor Risk Management Software

In the newly published 2019 Critical Capabilities for IT Vendor Risk Management Tools, Gartner has given ProcessUnity the highest scores for two Vendor Risk Management use cases most requested by Gartner clients.

The report evaluates IT Vendor Risk Management solution providers across key functional areas including:

Assessments
Workflows and Collaboration
Access and User Controls
User Interface and Navigation
Connectors and Integration
Configurability
Remediation Management
Vendor Profile Management

See how each vendor was scored. Get your complimentary copy of the 2019 Gartner Critical Capabilities for IT Vendor Risk Management Tools report now.

GET THE REPORT

Gartner Critical Capabilities for IT Vendor Risk Management Tools, December 19, 2019, Christopher Ambrose and Joanne Spencer

This graphic was published by Gartner, Inc. as part of a larger research document and should be evaluated in the context of the entire document. The Gartner document is available upon request from ProcessUnity. Disclaimer: Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose.

CONTACT US

Rise of the robots: Getting started with RPA for IT risk and security

LIVE WEBINAR! Wednesday, January 15th at 11AM PT / 2PM ET

With the rise of Robotic Process Automation (RPA), it is now possible to automate painfully manual risk and control assessments—as well as continuous monitoring. Hiring a robot returns precious bandwidth for your team to focus on critical thinking tasks like exception handling and issue remediation. But with so much potential, two questions remain: Where will automation drive the most efficiencies? Where should you start?

Join us tomorrow as Dan Zitting, former cyber risk advisor, shares practical examples of how IT risk and security teams can take advantage of RPA. He'll also walk through the maturity curve towards full automation or an “audit proof” IT and cybersecurity function. In this webinar you'll learn:

What RPA is and how companies are benefiting from robotics today.
The key differences between RPA and data analytics.
Real-life RPA use cases in IT audit, risk management, security, and compliance.
How to deploy robots for the biggest measurable impact.

Confirm Your Seat »

Page 28 of 36

Landing Pages

103119

CPE Webinar:

Key Steps to Mature Your Third-Party Risk Management Program

Vendor Risk Management Checklist

Cloud Risk Surface Report

pdf Cloud Risk Surface Report (1.54 MB)

pdf Download (1.54 MB)

White paper: Mastering risk with data-driven GRC

Learn how to effectively tackle third-party risk management

GDPR for Third-party Risk Management eBook

pdf GDPR for Third-party Risk Management eBook (5.68 MB)

pdf Download (5.68 MB) a complimentary copy of the eBook now to learn how to stay GDPR compliant.

White paper: Enforcing data privacy in the digital world

Is your IT VRM program ready for 2020?

Now available: 2019 Gartner Magic Quadrant for IT VRM Tools

The 2019 Gartner Magic Quadrant for IT Vendor Risk Management Tools

12 GRC platforms you should know about

The Forrester New Wave™: Cybersecurity Risk Rating Solutions, Q4 2019

pdf The Forrester New Wave™: Cybersecurity Risk Rating Solutions, Q4 2018 (703 KB)

pdf Download (703 KB)

ProcessUnity Scores Highest in Gartner Review of Vendor Risk Management Software

Rise of the robots: Getting started with RPA for IT risk & security

Rise of the robots: Getting started with RPA for IT risk and security

SIGN IN

Landing Pages

103119

CPE Webinar:

Key Steps to Mature Your Third-Party Risk Management Program

Vendor Risk Management Checklist

Cloud Risk Surface Report

pdf Cloud Risk Surface Report (1.54 MB)

pdf Download (1.54 MB)

White paper: Mastering risk with data-driven GRC

Learn how to effectively tackle third-party risk management

GDPR for Third-party Risk Management eBook

pdf GDPR for Third-party Risk Management eBook (5.68 MB)

pdf Download (5.68 MB) a complimentary copy of the eBook now to learn how to stay GDPR compliant.

White paper: Enforcing data privacy in the digital world

Is your IT VRM program ready for 2020?

Now available: 2019 Gartner Magic Quadrant for IT VRM Tools

The 2019 Gartner Magic Quadrant for IT Vendor Risk Management Tools

12 GRC platforms you should know about

The Forrester New Wave™: Cybersecurity Risk Rating Solutions, Q4 2019

pdf The Forrester New Wave™: Cybersecurity Risk Rating Solutions, Q4 2018 (703 KB)

pdf Download (703 KB)

ProcessUnity Scores Highest in Gartner Review of Vendor Risk Management Software

Rise of the robots: Getting started with RPA for IT risk & security

Rise of the robots: Getting started with RPA for IT risk and security

Please Login to download this file