Third Party Thursday - November 30, 2023

And just like that... November is over! Let's celebrate the close to an eventful month with this monthly edition of Third Party Thursday! Check out below for the latest articles, recently released resources, upcoming webinars, and more.?

Vendor risk management can keep supply chains strong and protect technology organizations from risks. It’s also extremely important to prioritize operational resilience with increasing reliance on third parties and evaluate vendors’ product roadmaps.

Organizations must be prepared to manage cybersecurity risks, especially with new regulatory reporting requirements and the costs of a data breach. And cyberattacks can compromise sensitive data and even put healthcare patient safety at risk. Catch up on all of this week’s news after the holiday weekend!

Read More

eBook:?InfoSec and Third-Party Risk Management: Better Vendor Risk Management Through Collaboration

Survey: State of Third-Party Risk Management 2024

Blog: How to Manage Banking as a Service (BaaS) Vendor Risks

Blog: Framework for a Successful Third-Party Risk Management Program

On-Demand Webinar: How to Manage Vendor Issues and Challenges

Podcast: Third-Party Risk Management?Takeaways From 2023

Additional Resources:

• eBook: Consequences of a Vendor Breach & How to Prepare For One
• eBook: Business Associate Data Breaches in Healthcare: Consequences and How to Prepare
• Blog: What Is a Vendor SOC Report?
• Blog: SEC 2024 Examination Priorities: Third-Party Concentration Risk and Essential Business Operations
• Blog: Small Third-Party Risk Management Team Tips for Collecting Due Diligence
• On-Demand Webinar: From the Top Down: The Role the Board and Senior Management Play in Third-Party Risk Management
• Blog: What Is Third-Party Risk Management
• On-Demand Webinar: How to Identify Your Credit Union's Critical Vendors
• Blog: Developing Vendor Risk Management Program Metrics
• Infographic: Creating a Vendor Risk Management Program That Protects Your Organization
• Blog: The Power of Third-Party Risk Management in the Energy Industry
• On-Demand Webinar: How to Create and Use Key Third-Party Risk Management Metrics
• Blog: Third-Party Risk Examples
• eBook: How to Comply With OSFI Third-Party Risk Guideline B-10
• Infographic: How to Get Support for Third-Party Risk Management: Setting the Tone-From-the-Top With the Board & Senior Management
• Blog: 10 Signs That You Need to Outsource or Augment Vendor Management Staff
• Blog: Be Thankful for Your Vendors by Expressing Appreciation

Check out the latest discussions in our complimentary online community dedicated to third-party risk professionals. Visit?www.thirdpartythinktank.com to register and sign in.

• Supplier Providing COTS Solutions: "For due diligence on a supplier that sells COTS (commercial off-the-shelf) applications, do you still perform the same information security due diligence?" Help Answer
• Boilerplate Contract Reviews/Negotiations: "What are your vendor compliance/third-party risk program norms when presented a contract/instrument where the service organization won't accept redlines/modifications/etc.?"?Help Answer
• Cloud Computing: "We use an email, web security, and archiving service provider that provides cloud computing services for filtering email spa and malware. It was previously determined that this vendor processes, stores, manages, or transports NPPI (nonpublic personal information). Are we correct in concluding that this vendor has access to NPPI?" Help Answer

Regulatory Riddle or Common Sense: Decoding Third-Party Risk Regulatory Perspectives, Themes, and Expectations

In this webinar, we’ll talk through interpreting regulatory requirements and identifying common regulatory themes, thinking like an auditor or regulatory examiner, and self-auditing your third-party risk management program.?

December 5, 2023 | Basic | 11am ET | Register Now

Third-Party Risk Management Best Practices for 2024

Let's finish off the year with a review of the third-party risk management challenges and lessons learned in 2023! We’ll also explore what might be on the third-party risk horizon for 2024 and beyond, as well as some key aspects of an effective third-party risk management program.

December 12 2023 | Basic |2pm ET | Register Now

Like what you read? Don't forget to click 'Subscribe' in the top right corner of the page for weekly third-party risk management updates, news, resources, and upcoming webinars.