Third Party Risk Management & Assessment: Imperative Advice in 2015
Several retailers entrusted with customer’s data have suffered theft of this data from purportedly secure servers. Overly zealous regulators have entered the fray and issued their own guidance on Third Party Risk Management, thereby creating over-lapping requirements dependent upon the types of services out-sourced by financial institutions. However, in fairness, most new requirements are an attempt to align third party governance to industry best practices.
Most companies depend on an extended network of suppliers and vendors. This network, un-monitored, is a serious potential source for data, security, reputation, and compliance risk. Most companies manage such risk by department and thereby leave themselves exposed to the weakest link when managing risk.
In a two hour live webcast, a panel of thought leaders and practitioners assembled by The Knowledge Group will provide an over-view of the increasingly serious issue of Third Party Risk Management & Assessment and discuss how companies and their counsel can strengthen their Third Party Risk Management and Assessment programs and ensure compliance with regulations in 2015 and beyond.
Key issues that will be covered include:
- Third Party Relationships : An Overview
- Third Party Risk Management: Significance and Implications
- Practical guidance for Third Party Risk Assessment
- Effective Approaches to Meeting Third Party Risk requirements
- TPR Software Implications - Increasing reliance on Third Party Software
- When looking at third parties, most businesses are interested in questionnaires…but in purchasing new software, it pays to get some testing results on the software itself, i.e. acceptable security
- When building software, consider the component supply chain and understanding he risks
- What are policies firms are using in this process?
CBIZ MHM, LLC
- How do you operationalize risk assessment process?
- Doing it efficiently – tools used in procurement life cycle
- Using a variety of questionnaires….examples of how to build questionnaires and leveraging it into the process
- Having the information from the product/process risk into a supplier risk assessment
- How to operationalize it?
Who Should Attend:
- Fraud Executives at Financial Institutions
- Financial Institution Executives
- Bank Regulation Lawyers
- Banking & Finance Lawyers
- Regulatory Managers
- Business Analyst
- Risk Officers
- Companies’ Senior Management
- Private and Public Companies
- Multinational Companies
Chris Wysopal is the co-founder of Veracode, a cloud-based application security company recognized by Gartner as a Leader in the Magic Quadrant. He was named one of InfoWorld's Top 25 CTOs and an industry thought leader by SC Magazine. Chris is on the Black Hat Conference Review Board and author of “The Art of Software Security Testing: Identifying Security Flaws.” He previously worked at @stake, a security consultancy (acquired by Symantec) that employed “white hat” hackers from L0pht Heavy Industries. In 1998, Chris and his colleagues testified before Congress that they could shut down the entire Internet in 30 minutes.
Chris Wysopal is the co-founder of Veracode, a cloud-based application security company recognized by Gartner as a Leader in the …
Remonde Brangman is the National Vendor Risk Practice Leader for CBIZ and has over 30 years experience providing governance, risk and internal controls advisory services to leading financial services entities and governmental organizations. He is also the firm’s resident expert on the International Risk Management Standard ISO 31000. Furthermore, Mr. Brangman is a seasoned Forensic Accountant with over 21 years of fraud investigation and forensic accounting experience.
Mr. Brangman was recently recognized by SMARTCEO as a Power Player and leading business consultant in the Washington, D.C. market. As a Risk Advisory consultant, Mr. Brangman has extensive knowledge of best practices in Vendor Risk Management. He regularly speaks on Risk Management topics, and has published numerous articles and white papers on the subject.
Remonde Brangman is the National Vendor Risk Practice Leader for CBIZ and has over 30 years experience providing governance, risk …
Print and review course materials
Method of Presentation:
NASBA Field of Study:
Business Management & Organization
NY Category of CLE Credit:
Unlock All The Knowledge and Credit You Need
Leading Provider of Online Continuing Education
It's As Easy as 1, 2, 3
Get Your 1-Year All Access Pass For Only $199
Veracode is a leader in securing web, mobile and third-party applications for the world’s largest global enterprises. By enabling organizations to rapidly identify and remediate application-layer threats before cyberattackers can exploit them, Veracode helps enterprises speed their innovations to market – without compromising security.
Veracode’s powerful cloud-based platform, deep security expertise and systematic, policy-based approach provide enterprises with a simpler and more scalable way to reduce application-layer risk across their global software infrastructures.
Veracode serves hundreds of customers across a wide range of industries, including nearly one-third of the Fortune 500, three of the top four U.S. commercial banks and more than 25 of Forbes’ 100 Most Valuable Brands. Learn more at www.veracode.com, on the Veracode blog and on Twitter.
About CBIZ MHM, LLC
CBIZ is a national business services company and, together with its attest partner MHM, is the 9th largest provider of accounting services in the United States (Accounting Today’s recently issued Top 100). CBIZ offers accounting, tax, internal audit, risk consulting, outsourced CFO and business advisory services to emerging, small and mid-market companies, financial institutions, government contractors, government entities, grant recipients and nonprofits. As the largest U.S. member of the Kreston International global accounting network and with over 30 accounting locations and nearly 100 business services offices in major markets across the country, CBIZ MHM represents an alternative to the Big 4 – offering the resources and efficiencies of a national firm while providing the highest quality technical expertise and personal service at the local engagement team level. https://www.cbiz.com/Accounting-Tax