Venminder has a team of due diligence experts who can significantly reduce your vendor management workload. Venminder also has a software solution to organize, track and report findings to Senior Management, the Board of Directors and, ultimately, the examining bodies.
…
continue reading
A dialogue with leaders in Cybersecurity and Third-Party Risk Management led a leader in the field: Gregory Rasner (author, "Cybersecurity & Third-Party Risk: Third-Party Threat Hunting" and "Zero Trust and Third-Party Risk: Reduce the Blast Radius")
…
continue reading
We are a casual cackle of geniuses ready to shed light on our observations of the world in an entertaining way.
…
continue reading
Just 3 people,adding a third opinion, about the party,after the party, so are you following us to the party or not?
…
continue reading
TPM Talk is an independent podcast from the inside of the Third Party Maintenance world. We interview IT & Data Center Hardware maintainers and discuss the latest news in the TPM space. Created by Alta Technologies, parts supplier to TPMs globally and North America's top stocking refurbished servers, storage & networking supplier. TPM clients choose Alta for our around the clock availability of parts and a fail rate as close to zero as you'll find anywhere. https://www.altatechnologies.com
…
continue reading
There are three vendor management models that we typically see: centralized, decentralized and a hybrid approach. These allow the vendor risk manager to set standards while allowing for communication through the relationship manager and on to the vendor.Kirjoittanut Third-Party Risk Education
…
continue reading
If your organization is in a regulated industry, you should anticipate regular examinations. It's good to review your regulators website to become familiar with their exam process, classification of issues, etc. In this podcast, learn common exam findings and next steps.Kirjoittanut Third-Party Risk Education
…
continue reading
Anyone who is involved in vendor risk management knows the intricacies of the various tasks. In this podcast, learn tips and common ways you can utilize vendor risk management software to streamline your processes.Kirjoittanut Third-Party Risk Education
…
continue reading
1
Interview: Barb Lowman, CUNA Strategic Services and Idrees Rafiq Jr, Cornerstone Resources
34:11
34:11
Toista myöhemmin
Toista myöhemmin
Listat
Tykkää
Tykätty
34:11
In this interview, Venminder's Hilary Jewhurst is joined by Barb Lowman, President at CUNA Strategic Services and Idrees Rafiq Jr, Information Security & Risk Management Consulting, Vice President at Cornerstone Resources to discuss the effects that fintech organizations have on credit unions.Kirjoittanut Third-Party Risk Education
…
continue reading
1
Third Party Threat Hunters: S2:E1 Julie Gaiaschi and TPRA
17:47
17:47
Toista myöhemmin
Toista myöhemmin
Listat
Tykkää
Tykätty
17:47
Summary The conversation covers the Third Party Risk Association's training and certification programs, upcoming events, and the development of new certificate programs. It also delves into the importance of third-party risk management, compliance, and resilience. The discussion highlights the need for specialized training and tools in the field of…
…
continue reading
In this podcast we’ll discuss four important vendor risk management frequently asked questions for beginners. You'll learn what vendor risk management is, why it’s important, who is involved and how vendor risk management is completed.Kirjoittanut Third-Party Risk Education
…
continue reading
Building a fourth-party vendor inventory can be challenging, but it's crucial to protect your organization from an extensive risk landscape. This podcast explains how to build a fourth-party vendor inventory and tips to keep in mind.Kirjoittanut Third-Party Risk Education
…
continue reading
Although a vendor's risk can change over time, risk-based due diligence is a a good strategy that provides consistent results. In this podcast, learn three ways risk-based vendor due diligence can improve your efficiency.Kirjoittanut Third-Party Risk Education
…
continue reading
1
Interview: Rachael Ormiston, Head of Privacy at Osano
17:36
17:36
Toista myöhemmin
Toista myöhemmin
Listat
Tykkää
Tykätty
17:36
In this thought leadership interview, learn how to implement vendor privacy scores into your third-party risk management practices with Venminder's Hilary Jewhurst and Osano's Rachel OrmistonKirjoittanut Third-Party Risk Education
…
continue reading
Understanding the key roles involved in third-party risk management is important to you and your organization. Learn their responsibilities and how they fit into your third-party risk management program.Kirjoittanut Third-Party Risk Education
…
continue reading
1
Third Party Threat Hunters Podcast: Guest Jay Bobo
26:41
26:41
Toista myöhemmin
Toista myöhemmin
Listat
Tykkää
Tykätty
26:41
Summary In this episode, Gregory interviews Jay Bobo, the creator and CEO of Breach Siren, about third-party risk management. They discuss the challenges of using crappy and expensive tools in the space, the need for accountability from regulators and ISACs, and the financial impact of third-party risk. They also explore how cybersecurity breaches …
…
continue reading
Guest Adam Shostack helps us understand how Large Language Model is useful (and maybe not so) in threat modeling.Kirjoittanut Gregory Rasner
…
continue reading
Kirjoittanut Gregory Rasner
…
continue reading
1
Third Party Threat Hunters Quick Clip: Threat Modeling for Third-Party Risk with Adam Shostack
1:13
Kirjoittanut Gregory Rasner
…
continue reading
The economy has faced many challenges the past few years, from the pandemic, supply chain issues, ongoing global wars, and others. These events present many challenges for organizations and their looking to cut costs. As a result third-party risk management teams are on the chopping block.Kirjoittanut Third-Party Risk Education
…
continue reading
1
Third Party Threat Hunters: Guest Adam Shostack
19:30
19:30
Toista myöhemmin
Toista myöhemmin
Listat
Tykkää
Tykätty
19:30
On this episode we talk to Threat Modeling guru Adam Shostack (check out his website https://shostack.org/about/adam) and discuss some great topics: 1. Cyber Public Health Initiative - how do we measure progress in cyber? 2. Language Learning Models in Threat Modeling 3. How to use Threat Modeling in Third-Party Risk…
…
continue reading
1
Interview: Andrew Moyad, CEO of Shared Assessments
52:37
52:37
Toista myöhemmin
Toista myöhemmin
Listat
Tykkää
Tykätty
52:37
In this interview, Andrew discusses how cyber insurance is important for your third-party risk management program, what it generally covers, what it doesn't cover, and more.Kirjoittanut Third-Party Risk Education
…
continue reading
In this informative podcast, learn 4 key recommendations to implement in your third-party risk management programs to mitigate and manage vendor risk this upcoming year.Kirjoittanut Third-Party Risk Education
…
continue reading
1
Interview: Tom Rogers, Founder and CEO at Vendor Centric
16:20
16:20
Toista myöhemmin
Toista myöhemmin
Listat
Tykkää
Tykätty
16:20
Throughout this interview, Tom Rogers defines the characteristics that make up a fourth-party vendor and uncovers the steps to manage them. Listen to this interview to learn about fourth party due diligence, regulations, and best practices.Kirjoittanut Third-Party Risk Education
…
continue reading
1
S1, E9: Third Party Threat Hunters, Guest Dr. Zero Trust (Chase Cunningham)
24:48
24:48
Toista myöhemmin
Toista myöhemmin
Listat
Tykkää
Tykätty
24:48
Great time talking with Dr. Chase Cunningham about a variety of topics: Dangers of Deep Fakes His new book "How NOT to Lead...Dumpster Chickens and Mushroom Farmers" Small Business Cybersecurity Data Security and Zero Risk adoption challenges Pre-order his book on Amazon: https://www.amazon.com/How-NOT-Lead-Chase-Cunningham/dp/1394201982/ref=sr_1_1…
…
continue reading
In this podcast, we'll reflect back on what's been happening in the world of third-party risk this year. We've included five takeaways, from AI to the fall of Silicon Valley Bank. Listen now!Kirjoittanut Third-Party Risk Education
…
continue reading
1
Third Party Threat Hunters: George Finney (CISO and Author) as guest.
38:59
38:59
Toista myöhemmin
Toista myöhemmin
Listat
Tykkää
Tykätty
38:59
George Finney, CISO at SMU, CEO of Well Aware Security, and author of two books, the latest being "Project Zero Trust" is our guest. He and Greg talk zero trust, third-party risk, training, and about the SolarWinds SEC case.Kirjoittanut Gregory Rasner
…
continue reading
Learn best practices that should be included in your third-party risk management program to ensure you keep your organization protected from data breaches and other cybersecurity incidents.Kirjoittanut Third-Party Risk Education
…
continue reading
Partnering with a large well-known vendor can prove to be beneficial. However, in some instances larger vendors can be more difficult to effectively manage. Learn the essential tips and best practices to mitigate vendor risk with your large vendors.Kirjoittanut Third-Party Risk Education
…
continue reading
1
Interview: Mike Morris, Principal at Wipfli
25:47
25:47
Toista myöhemmin
Toista myöhemmin
Listat
Tykkää
Tykätty
25:47
Throughout this interview, Mike Morris Highlights the SEC Proposed Outsourcing Rule and it's impact on vendor risk management. Listen to learn answers to common questions, tips and suggestions, as well as a general overview of the SEC Proposed Outsourcing Rule.Kirjoittanut Third-Party Risk Education
…
continue reading
1
Third Party Threat Hunters Podcast: Guest Jerry Chapman
31:44
31:44
Toista myöhemmin
Toista myöhemmin
Listat
Tykkää
Tykätty
31:44
Tune in to this episode with co-author of "Zero Trust Security: An Enterprise Guide" and the Technical Editor for my next book "Zero Trust and Third-Party Risk", Jerry Chapman. The topics range from Zero Trust (duh!), to software vulnerabilities, a good primer on "Control Plane" and its impact on SaaS, Artificial Intelligence and much more! Great e…
…
continue reading
1
TPTHunters Podcast: Guest Vincent Scales
34:19
34:19
Toista myöhemmin
Toista myöhemmin
Listat
Tykkää
Tykätty
34:19
Listen in on a lively discussion with the Chairman of the Board for Third Party Risk Association and Director of Verizon's TPRM program. We talk about zero-day software vulnerabilities and how we all struggle to deal with them, off some solutions, some more problems, and discuss upcoming TPRA Conferences and their benefits.…
…
continue reading
Regulatory examiners have distinct expectations when it comes to the boards involvement in third-party risk management. Listen to learn the board's place in regulatory exams, and how you can lend a helping hand.Kirjoittanut Third-Party Risk Education
…
continue reading
Although your organization may have limited resources for your third-party risk management program, you don't have to fall behind. Even smaller teams can manage the complex and interrelated processes involved in TPRM by using software.Kirjoittanut Third-Party Risk Education
…
continue reading
Collaboration with vendor owners involves a lot of day-to-day activities, spanning across the three stages of the third-party risk management lifecycle. This podcast outlines useful tips that can improve collaboration between your third-party risk management team and your vendor owner.Kirjoittanut Third-Party Risk Education
…
continue reading
No matter the vendor, there may be issues that arise at any point in the vendor relationship. In this podcast, learn examples of third-party risk management issues you may encounter.Kirjoittanut Third-Party Risk Education
…
continue reading
1
S1E5: TPTHunters with Rob Wood (CISO of Medicare/Medicaid)
31:25
31:25
Toista myöhemmin
Toista myöhemmin
Listat
Tykkää
Tykätty
31:25
In this episode, we've got Rob Wood, as the CISO from Medicare/Medicaid, whose passion around third-party risk and cybersecurity is unmatched. Learn how many of us are 'doing it wrong' and get some great soft-skills discussions.Kirjoittanut Gregory Rasner
…
continue reading
Effective third-party risk management can help your organization mitigate supply chain risk. Natural disasters and cyberattacks are just two examples of business disrupting events. This podcast outlines four examples of TPRM can help you mitigate supply chain risk.Kirjoittanut Third-Party Risk Education
…
continue reading
1
S1E4: TPTHunters, Clar Rosso (CEO of ISC2)
33:18
33:18
Toista myöhemmin
Toista myöhemmin
Listat
Tykkää
Tykätty
33:18
This episode is jam-packed full of great information as we meet and discuss a variety of risk topics with Clar Rosso, CEO of ISC2. From Cyber Insurance, to a Third Party Risk Task Force they are standing up, the challenges faced in the Cyber workforce, and how to improve Cyber GRC, there is a lot to learn and discover in this episode.…
…
continue reading
1
S1:E3: TPTHunters Guest Chris Romeo (CEO, Kerr Ventures)
31:45
31:45
Toista myöhemmin
Toista myöhemmin
Listat
Tykkää
Tykätty
31:45
In this episode, we learn so much I have to listen to the podcast myself to let it all sink in! Are SBOMs (Software Bill of Materials) the answer to software security? How is "Provenance" and software security related? Some awesome tips on how to tell if your software providers is producing secure and stable products. How can a Security Champions p…
…
continue reading
In today's business climate vendor financial health monitoring is important. There are several factors to consider when reviewing vendor financial health including, inflation, political instability, and more.Kirjoittanut Third-Party Risk Education
…
continue reading
1
TPTHunters S1:E2. Dustin Sachs (Guest)
32:18
32:18
Toista myöhemmin
Toista myöhemmin
Listat
Tykkää
Tykätty
32:18
Watch the hosts and guest, Dustin Sachs (doctoral candidate and GRC leader at World Fuel Systems) discuss how TPRM is not a set of tools or technologies, but processes to identify, track and close risks.Kirjoittanut Gregory Rasner
…
continue reading
After conducting our State of Third-Party Risk Management Survey in November of last year, we've analyzed the results and found six highlights that you should pay close attention to this upcoming year.Kirjoittanut Third-Party Risk Education
…
continue reading
1
S1E1: Breaches and TPRM; CEO of TRPA
31:50
31:50
Toista myöhemmin
Toista myöhemmin
Listat
Tykkää
Tykätty
31:50
Join the host, co-host and guest, Julie Gaiaschi (CEO for TPRA) in discussing breaches and third-party risk management, along with other insights: how to better manage interactions with vendors what should be your main goal as a cyber and third-party risk management professional training and certification opportunities at TPRA free membership to pr…
…
continue reading
1
S1E1: Guest: CEO for Third Party Risk Association, Julie Gaiaschi
31:50
31:50
Toista myöhemmin
Toista myöhemmin
Listat
Tykkää
Tykätty
31:50
Join the host, co-host and guest, Julie Gaiaschi (CEO for TPRA) in discussing breaches and third-party risk management, along with other insights: how to better manage interactions with vendors what should be your main goal as a cyber and third-party risk management professional training and certification opportunities at TPRA free membership to pr…
…
continue reading
Even in today's increasingly remote working environment, you need to perform on-site vendor visits. In this podcast, we'll highlight 6 reasons on-site vendor visits are a valuable part of your due diligence practice.Kirjoittanut Third-Party Risk Education
…
continue reading
For many, 2022 was a challenging year. From supply chain disruptions to regulatory updates, and the threat of malicious actors. In this podcast, learn six TPRM best practices to bring into 2023.Kirjoittanut Third-Party Risk Education
…
continue reading
TPRM involves many activities that can take up a lot of your team's times and resources. In this podcast, learn 5 advantages of outsourcing your third-party risk management tasks.Kirjoittanut Third-Party Risk Education
…
continue reading
Protecting your customers' sensitive information is important. It's important to understand the weaknesses and risks associated with your vendors. In this podcast, learn how to safeguard your organization from third-party cyber risk.Kirjoittanut Third-Party Risk Education
…
continue reading
When dealing with your critical vendors, it's necessary to ensure that all parties know what is expected of them and what the dealbreakers are in the relationship. Learn 4 best practices of critical vendor contract management in this podcast.Kirjoittanut Third-Party Risk Education
…
continue reading
Keeping the patient proactive care model in mind when considering third-party risk management is important. This podcast highlights 4 steps to take in creating a TPRM program for a health organization.Kirjoittanut Third-Party Risk Education
…
continue reading
Although there is still limited legislation on mandatory ESG disclosures, regulators are continuing to address issues like climate change and modern slavery. This podcast highlights three ways you can help your vendor prepare for ESG disclosures.Kirjoittanut Third-Party Risk Education
…
continue reading
Having an exit strategy in case your vendor relationship must come to an end is crucial. When faced with offboarding a vendor, you'll want to avoid any surprises. Learn 4 exit strategies in this informational podcast.Kirjoittanut Third-Party Risk Education
…
continue reading
Vendor financial health includes many factors that your organization should be cognizant of and reviewing accordingly. This podcast highlights three mistakes to avoid and ensure there is comparability and consistency across your vendor financial reviews.Kirjoittanut Third-Party Risk Education
…
continue reading
1
3PO Podcast #69 | Through a lens - A Talk with Ian
1:09:12
1:09:12
Toista myöhemmin
Toista myöhemmin
Listat
Tykkää
Tykätty
1:09:12
Ian is a photographer, stand up comedian, and former trivia host. He throws some of the best parties in Tulsa! All around great guy and a great conversation about his life and how he ended up in good ole Tulsa, America. Follow us on socials and subscribe so you don't miss out on new episodes every Wednesday! https://www.facebook.com/ThirdPartyObser…
…
continue reading