Third Party Thursday - September 21, 2023

Can you believe the first official day of fall is only two days away??Head into the new season with a solid understanding of what's happening in the third-party risk management world. Check out recent articles, informative resources, community happenings, and upcoming webinars all below!

The impacts of third-party data breaches are widespread. A hotel and casino company learns a third-party breach can cost millions of dollars. Third-party breaches can also compromise customer data and wallets and can leak sensitive information. The White House is trying to establish standardized cybersecurity regulations to help prevent these attacks.

Due diligence is a crucial step in third-party risk management, especially as new sanctions come out against Russia-affiliated organizations and state privacy laws become more stringent. Even regulations on landlords can impact financial institutions that don’t do the proper checks on properties. Failure to complete due diligence can lead to costly regulatory fines. Be sure to check out all of this week’s news and headlines!

Read More

Infographic: The Differences Between Vendor Assessments, Questionnaires, Due Diligence, and Continuous Monitoring

Blog: Solve Shadow Procurement Issues in Higher Education With Vendor Risk Management

Blog: Justifying the Cost of Outsourced Third-Party Risk Management

Blog: How to Enable Vendor Managers

eBook: How Many People Should You Dedicate to Third-Party Risk Management?

Check out the latest discussions in our complimentary online community dedicated to third-party risk professionals. Visit?www.thirdpartythinktank.com to register and sign in.

• Performance Monitoring for Industry Regulator: "What approaches are you using to monitor the performance of Industry Regulators? (OCC, FRB, etc.)"?Help Answer
• Insurance Requirement Questionnaire: "What process are you using when creating a risk questionnaire to determine the type of insurance required on a vendor?"?Help Answer
• TPRM Responsibility: "How involved are your business units in your third-party risk management?" Help Answer

Differences Between Vendor SOC Reports

Do you need to verify that your vendor has the right internal controls to protect your data? Reviewing a SOC document is a good place to start. But how do you know which type of document to request? Join us for this session where we’ll cover the basics of vendor SOC reports.

October 3, 2023 | Basic | 11am ET?| Register Now

Your Vendor's SOC Report: What and How to Review

In this webinar, an expert will help you identify which type of SOC reports you need and the benefits of a thorough vendor SOC report review. We will explore the various sections of a SOC report and guide you on what to look for and how to assess the risks.?

October 5, 2023 | Intermediate | 2pm ET | Register Now

Understanding the Elements of Your Vendor's Cybersecurity Program

Join us for this webinar, presented by an expert in information security and third-party risk management. We'll explain which vendors require cybersecurity reviews and when and how to do them, as well as what to do in the event of a data breach or other cyber incident.

October 17, 2023 | Basic | 2pm ET | Register Now

Like what you read? Don't forget to click 'Subscribe' in the top right corner of the page for weekly third-party risk management updates, news, resources, and upcoming webinars.