ThirdPartyTrust Blog

Guest Blog by Mike Baier on GDPR and the Integration of Third Party Service Providers

Posted by Jeffrey Spetter on 4/5/18 4:13 PM

While the entire world is seemingly melting with the terrifying onslaught of the enforcement of the General Data Protection Regulation (GDPR…coming to a theater near you on May 25th, 2018) there remains a significant amount of mis-information, confusion, and utter chaos within some of the world’s largest corporations (HQ’d outside of the EU) and on social media regarding the continued use of trusted third parties in support of business operations…especially, those companies not too experienced with heavily regulated environments such as banking, insurance, and other financial services.

Read More

Topics: third party risk, GDPR

TPT InfoSec Interviews: Rocio Baeza, CEO Cybersecuritybase

Posted by Jeffrey Spetter on 3/27/18 12:39 PM

Hi, everyone. This is Jeff Spetter from ThirdPartyTrust and I had the great pleasure of speaking with Rocio Baeza, CEO of CyberSecurityBase. Here's a recap and audio of the interview. 

Read More

Topics: Vendor Risk Management

OWASP CHICAGO FEBRUARY MEETUP SUMMARY AND PRESENTATIONS

Posted by Anders Norremo on 3/5/18 8:00 AM

Big thank you to Morningstar for hosting the recent OWASP meetup. The evening was filled with really informative content in a couple of areas all tied to OWASP.

Read More

Experts Share Important Metrics for Assessing Vendor risk

Posted by Jeffrey Spetter on 1/10/18 4:43 PM

Metrics drive the measure of progress and stand as benchmarks during any assessment, audit or review process. They are the life blood of reporting and when it comes to vendor risk management, it is not as straight forward as you might think. Let's take a deeper look into what Guy Dulberger of Ritchie Bros. has to say about the key metrics to track when assessing vendor risk and how a risk-based approach is the new norm for vendor risk management. 

 "I think an important aspect of what makes a great security report, KPI or metric is understanding your business and where your greatest orgnizational risk lies."

- Guy Dulberger, Information Security Executive

Read More

Topics: Best Practices

Emerging Technology, Unknown Risks: DePaul University's Fourth Annual Cyber Risk Conference | Part Two

Posted by Yasmeen Ghazal on 12/20/17 9:10 AM

Part one of the DePaul Cyber Risk Panel covered: 

- How to start building a vendor risk management program

- Key vendor risk management metrics 

- How to keep the vendor engaged after the contract has been signed

In Part 2, panelists answer audience questions. Including what constitutes a vendor and varying risk profiles for vendors. 

Read More

Topics: Vendor Risk Management, Panel Discussions

Emerging Technology, Unknown Risks: DePaul University's Fourth Annual Cyber Risk Conference | PART ONE

Posted by Yasmeen Ghazal on 11/29/17 12:00 AM

DePaul University's Arditti Center for Risk Management hosted its 4th annual Cyber-Risk Conference earlier this week with over 100 attendees. Three panels took place that day, one moderated by Anders Norremo, CEO of ThirdPartyTrust, on the topic of The Cloud and Third Party Vendor Managament. Panelists included Kyle Brunell, IT Risk manager at Ernst & Young; Shane Hibbard, Director of Information Security at Invenergy; Richard Latayan, Cybersecurity and Network Infrastructure Manager at Hollister.

Read More

Topics: Panel Discussions

2017 Vendor Risk Management BenchMark Study | Protiviti & Shared Assessments

Posted by Yasmeen Ghazal on 11/21/17 4:40 PM

The external risk environment is changing quickly as massive and costly cyber attacks -- Home Depot, Boston Medical Center and the Department of Veterans Affairs, among others -- have struck in the past couple years, continuing to challenge organizations to re-think approaches to vendor risk management.

Read More

Topics: Vendor Risk Management

Keynote Panel: Re-thinking How to Build Trust in the Vendor Eco-System

Posted by Yasmeen Ghazal on 10/30/17 9:00 AM

 

On October 18th, 2017, McCormick Center held 3,000 attendees as the first annaul Cyber Security Chicago conference. It offered invaluable insights around hot topics in the industry including IoT Security, DevSecOps and the Equifax Breach. On the Keynote Stage, Anders Norremo, CEO of ThirdPartyTrust, led a keynote on Re-Thinking How to Build Trust in the Vendor Eco-System alongside   Fawaz Rasheed , CISO  of Trustmark Companies, and  Matt Dechant , CISO of Tempus
Read More

Topics: Vendor Risk Management, third party risk

Data Risk in the Third-Party | Ponemon Institute

Posted by Jeffrey Spetter on 10/12/17 8:29 AM

The Ponemon Institute recently rolled out there second annual study of Data Risk in the Third-Party Ecosystem. The study aims to understand trends in the challenges companies face in protecting sensitive and confidential information shared with third parties and 4th party vendors. 

Read More

Topics: Vendor Risk Management, third party risk

Panel: Cybersecurity & Manufacturing in the digital era

Posted by Yasmeen Ghazal on 9/11/17 4:20 PM

On September 6th, 2017, Anders Norremo, CEO of ThirdPartyTrust, moderated a panel of manufacturing experts on the topic of CyberSecurity & Manufacturing in the Digital Era at the OnRamp Conference in Milwaukee, WI.

Panelists included Chris Merkel, CISO of Brunswick Corp; David McPhee, the Regional Information Security Manager at Caterpillar; Michael Goetzman, CISO at Master Lock; and Steve Brukbacher, the Application Security Manager at Johnson Controls. 

Read More

Topics: Vendor Risk Management

ThirdPartyTrust is a vendor risk management platform strengthening cyber risk intelligence and simplifying the management process for enterprises performing vendor risk assessments.
 
By analyzing both third and fourth party vendor cyber risk using a network-based solution, like 3PT, trust is built and mapped within your vendor eco-system.

Subscribe to Email Updates

Recent Posts