A dialogue with leaders in Cybersecurity and Third-Party Risk Management led a leader in the field: Gregory Rasner (author, "Cybersecurity & Third-Party Risk: Third-Party Threat Hunting" and "Zero Trust and Third-Party Risk: Reduce the Blast Radius")
…
continue reading
Venminder has a team of due diligence experts who can significantly reduce your vendor management workload. Venminder also has a software solution to organize, track and report findings to Senior Management, the Board of Directors and, ultimately, the examining bodies.
…
continue reading
We are a casual cackle of geniuses ready to shed light on our observations of the world in an entertaining way.
…
continue reading
Just 3 people,adding a third opinion, about the party,after the party, so are you following us to the party or not?
…
continue reading
TPM Talk is an independent podcast from the inside of the Third Party Maintenance world. We interview IT & Data Center Hardware maintainers and discuss the latest news in the TPM space. Created by Alta Technologies, parts supplier to TPMs globally and North America's top stocking refurbished servers, storage & networking supplier. TPM clients choose Alta for our around the clock availability of parts and a fail rate as close to zero as you'll find anywhere. https://www.altatechnologies.com
…
continue reading
1
The 3 Vendor Risk Management Frameworks
4:41
4:41
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
4:41
There are three vendor management models that we typically see: centralized, decentralized and a hybrid approach. These allow the vendor risk manager to set standards while allowing for communication through the relationship manager and on to the vendor.Oleh Third-Party Risk Education
…
continue reading
1
Common Third-Party Risk Management Findings in Exams and Next Steps
5:19
5:19
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
5:19
If your organization is in a regulated industry, you should anticipate regular examinations. It's good to review your regulators website to become familiar with their exam process, classification of issues, etc. In this podcast, learn common exam findings and next steps.Oleh Third-Party Risk Education
…
continue reading
1
How Vendor Risk Management Software Streamlines Your Program
5:12
5:12
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
5:12
Anyone who is involved in vendor risk management knows the intricacies of the various tasks. In this podcast, learn tips and common ways you can utilize vendor risk management software to streamline your processes.Oleh Third-Party Risk Education
…
continue reading
1
Interview: Barb Lowman, CUNA Strategic Services and Idrees Rafiq Jr, Cornerstone Resources
34:11
34:11
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
34:11
In this interview, Venminder's Hilary Jewhurst is joined by Barb Lowman, President at CUNA Strategic Services and Idrees Rafiq Jr, Information Security & Risk Management Consulting, Vice President at Cornerstone Resources to discuss the effects that fintech organizations have on credit unions.Oleh Third-Party Risk Education
…
continue reading
1
Third Party Threat Hunters: S2:E1 Julie Gaiaschi and TPRA
17:47
17:47
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
17:47
Summary The conversation covers the Third Party Risk Association's training and certification programs, upcoming events, and the development of new certificate programs. It also delves into the importance of third-party risk management, compliance, and resilience. The discussion highlights the need for specialized training and tools in the field of…
…
continue reading
1
4 Important Vendor Risk Management FAQs for Beginners
5:48
5:48
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
5:48
In this podcast we’ll discuss four important vendor risk management frequently asked questions for beginners. You'll learn what vendor risk management is, why it’s important, who is involved and how vendor risk management is completed.Oleh Third-Party Risk Education
…
continue reading
1
How to Build a Fourth-Party Vendor Inventory
5:05
5:05
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
5:05
Building a fourth-party vendor inventory can be challenging, but it's crucial to protect your organization from an extensive risk landscape. This podcast explains how to build a fourth-party vendor inventory and tips to keep in mind.Oleh Third-Party Risk Education
…
continue reading
1
Risk-Based Due Diligence in Third-Party Risk Management
4:01
4:01
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
4:01
Although a vendor's risk can change over time, risk-based due diligence is a a good strategy that provides consistent results. In this podcast, learn three ways risk-based vendor due diligence can improve your efficiency.Oleh Third-Party Risk Education
…
continue reading
1
Interview: Rachael Ormiston, Head of Privacy at Osano
17:36
17:36
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
17:36
In this thought leadership interview, learn how to implement vendor privacy scores into your third-party risk management practices with Venminder's Hilary Jewhurst and Osano's Rachel OrmistonOleh Third-Party Risk Education
…
continue reading
1
Who Is Involved in Third-Party Risk Management?
4:50
4:50
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
4:50
Understanding the key roles involved in third-party risk management is important to you and your organization. Learn their responsibilities and how they fit into your third-party risk management program.Oleh Third-Party Risk Education
…
continue reading
1
Third Party Threat Hunters Podcast: Guest Jay Bobo
26:41
26:41
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
26:41
Summary In this episode, Gregory interviews Jay Bobo, the creator and CEO of Breach Siren, about third-party risk management. They discuss the challenges of using crappy and expensive tools in the space, the need for accountability from regulators and ISACs, and the financial impact of third-party risk. They also explore how cybersecurity breaches …
…
continue reading
1
TPTHunters Quick Clip: LLM Use in Threat Modeling
0:44
0:44
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
0:44
Guest Adam Shostack helps us understand how Large Language Model is useful (and maybe not so) in threat modeling.Oleh Gregory Rasner
…
continue reading
1
TPTHunters Quick Clip: Danger of Deepfakes in Politics with Dr. Zero Trust #deepfake
0:59
0:59
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
0:59
Oleh Gregory Rasner
…
continue reading
1
Third Party Threat Hunters Quick Clip: Threat Modeling for Third-Party Risk with Adam Shostack
1:13
1:13
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
1:13
Oleh Gregory Rasner
…
continue reading
1
Why Third-Party Risk Management Matters in a Struggling Economic Climate
6:21
6:21
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
6:21
The economy has faced many challenges the past few years, from the pandemic, supply chain issues, ongoing global wars, and others. These events present many challenges for organizations and their looking to cut costs. As a result third-party risk management teams are on the chopping block.Oleh Third-Party Risk Education
…
continue reading
1
Third Party Threat Hunters: Guest Adam Shostack
19:30
19:30
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
19:30
On this episode we talk to Threat Modeling guru Adam Shostack (check out his website https://shostack.org/about/adam) and discuss some great topics: 1. Cyber Public Health Initiative - how do we measure progress in cyber? 2. Language Learning Models in Threat Modeling 3. How to use Threat Modeling in Third-Party Risk…
…
continue reading
1
Interview: Andrew Moyad, CEO of Shared Assessments
52:37
52:37
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
52:37
In this interview, Andrew discusses how cyber insurance is important for your third-party risk management program, what it generally covers, what it doesn't cover, and more.Oleh Third-Party Risk Education
…
continue reading
1
Third-Party Risk Management Recommendations for 2024
5:13
5:13
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
5:13
In this informative podcast, learn 4 key recommendations to implement in your third-party risk management programs to mitigate and manage vendor risk this upcoming year.Oleh Third-Party Risk Education
…
continue reading
1
Interview: Tom Rogers, Founder and CEO at Vendor Centric
16:20
16:20
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
16:20
Throughout this interview, Tom Rogers defines the characteristics that make up a fourth-party vendor and uncovers the steps to manage them. Listen to this interview to learn about fourth party due diligence, regulations, and best practices.Oleh Third-Party Risk Education
…
continue reading
1
S1, E9: Third Party Threat Hunters, Guest Dr. Zero Trust (Chase Cunningham)
24:48
24:48
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
24:48
Great time talking with Dr. Chase Cunningham about a variety of topics: Dangers of Deep Fakes His new book "How NOT to Lead...Dumpster Chickens and Mushroom Farmers" Small Business Cybersecurity Data Security and Zero Risk adoption challenges Pre-order his book on Amazon: https://www.amazon.com/How-NOT-Lead-Chase-Cunningham/dp/1394201982/ref=sr_1_1…
…
continue reading
1
Third-Party Risk Management Takeaways From 2023
5:30
5:30
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
5:30
In this podcast, we'll reflect back on what's been happening in the world of third-party risk this year. We've included five takeaways, from AI to the fall of Silicon Valley Bank. Listen now!Oleh Third-Party Risk Education
…
continue reading
1
Third Party Threat Hunters: George Finney (CISO and Author) as guest.
38:59
38:59
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
38:59
George Finney, CISO at SMU, CEO of Well Aware Security, and author of two books, the latest being "Project Zero Trust" is our guest. He and Greg talk zero trust, third-party risk, training, and about the SolarWinds SEC case.Oleh Gregory Rasner
…
continue reading
1
Drafting Cybersecurity Requirements Into the Vendor Contract
4:44
4:44
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
4:44
Learn best practices that should be included in your third-party risk management program to ensure you keep your organization protected from data breaches and other cybersecurity incidents.Oleh Third-Party Risk Education
…
continue reading
1
Manage Large Vendors Successfully in Your Third-Party Risk Management Program
5:45
5:45
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
5:45
Partnering with a large well-known vendor can prove to be beneficial. However, in some instances larger vendors can be more difficult to effectively manage. Learn the essential tips and best practices to mitigate vendor risk with your large vendors.Oleh Third-Party Risk Education
…
continue reading
1
Interview: Mike Morris, Principal at Wipfli
25:47
25:47
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
25:47
Throughout this interview, Mike Morris Highlights the SEC Proposed Outsourcing Rule and it's impact on vendor risk management. Listen to learn answers to common questions, tips and suggestions, as well as a general overview of the SEC Proposed Outsourcing Rule.Oleh Third-Party Risk Education
…
continue reading
1
Third Party Threat Hunters Podcast: Guest Jerry Chapman
31:44
31:44
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
31:44
Tune in to this episode with co-author of "Zero Trust Security: An Enterprise Guide" and the Technical Editor for my next book "Zero Trust and Third-Party Risk", Jerry Chapman. The topics range from Zero Trust (duh!), to software vulnerabilities, a good primer on "Control Plane" and its impact on SaaS, Artificial Intelligence and much more! Great e…
…
continue reading
1
TPTHunters Podcast: Guest Vincent Scales
34:19
34:19
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
34:19
Listen in on a lively discussion with the Chairman of the Board for Third Party Risk Association and Director of Verizon's TPRM program. We talk about zero-day software vulnerabilities and how we all struggle to deal with them, off some solutions, some more problems, and discuss upcoming TPRA Conferences and their benefits.…
…
continue reading
1
Board Oversight in Third-Party Risk Management and Regulatory Exams
5:03
5:03
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
5:03
Regulatory examiners have distinct expectations when it comes to the boards involvement in third-party risk management. Listen to learn the board's place in regulatory exams, and how you can lend a helping hand.Oleh Third-Party Risk Education
…
continue reading
1
Leverage Resources for Increased Third-Party Risk Management Value
5:25
5:25
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
5:25
Although your organization may have limited resources for your third-party risk management program, you don't have to fall behind. Even smaller teams can manage the complex and interrelated processes involved in TPRM by using software.Oleh Third-Party Risk Education
…
continue reading
1
Tips to Improve Collaboration With Vendor Owners
3:51
3:51
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
3:51
Collaboration with vendor owners involves a lot of day-to-day activities, spanning across the three stages of the third-party risk management lifecycle. This podcast outlines useful tips that can improve collaboration between your third-party risk management team and your vendor owner.Oleh Third-Party Risk Education
…
continue reading
1
Identifying and Documenting Third-Party Risk Management Issues
4:14
4:14
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
4:14
No matter the vendor, there may be issues that arise at any point in the vendor relationship. In this podcast, learn examples of third-party risk management issues you may encounter.Oleh Third-Party Risk Education
…
continue reading
1
S1E5: TPTHunters with Rob Wood (CISO of Medicare/Medicaid)
31:25
31:25
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
31:25
In this episode, we've got Rob Wood, as the CISO from Medicare/Medicaid, whose passion around third-party risk and cybersecurity is unmatched. Learn how many of us are 'doing it wrong' and get some great soft-skills discussions.Oleh Gregory Rasner
…
continue reading
1
Mitigate Supply Chain Risk With Third-Party Risk Management Best Practices
3:44
3:44
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
3:44
Effective third-party risk management can help your organization mitigate supply chain risk. Natural disasters and cyberattacks are just two examples of business disrupting events. This podcast outlines four examples of TPRM can help you mitigate supply chain risk.Oleh Third-Party Risk Education
…
continue reading
1
S1E4: TPTHunters, Clar Rosso (CEO of ISC2)
33:18
33:18
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
33:18
This episode is jam-packed full of great information as we meet and discuss a variety of risk topics with Clar Rosso, CEO of ISC2. From Cyber Insurance, to a Third Party Risk Task Force they are standing up, the challenges faced in the Cyber workforce, and how to improve Cyber GRC, there is a lot to learn and discover in this episode.…
…
continue reading
1
S1:E3: TPTHunters Guest Chris Romeo (CEO, Kerr Ventures)
31:45
31:45
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
31:45
In this episode, we learn so much I have to listen to the podcast myself to let it all sink in! Are SBOMs (Software Bill of Materials) the answer to software security? How is "Provenance" and software security related? Some awesome tips on how to tell if your software providers is producing secure and stable products. How can a Security Champions p…
…
continue reading
1
Vendor Financial Importance in Today's Business Climate
5:49
5:49
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
5:49
In today's business climate vendor financial health monitoring is important. There are several factors to consider when reviewing vendor financial health including, inflation, political instability, and more.Oleh Third-Party Risk Education
…
continue reading
1
TPTHunters S1:E2. Dustin Sachs (Guest)
32:18
32:18
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
32:18
Watch the hosts and guest, Dustin Sachs (doctoral candidate and GRC leader at World Fuel Systems) discuss how TPRM is not a set of tools or technologies, but processes to identify, track and close risks.Oleh Gregory Rasner
…
continue reading
1
6 State Of Third-Party Risk Management Highlights For 2023
6:34
6:34
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
6:34
After conducting our State of Third-Party Risk Management Survey in November of last year, we've analyzed the results and found six highlights that you should pay close attention to this upcoming year.Oleh Third-Party Risk Education
…
continue reading
1
S1E1: Breaches and TPRM; CEO of TRPA
31:50
31:50
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
31:50
Join the host, co-host and guest, Julie Gaiaschi (CEO for TPRA) in discussing breaches and third-party risk management, along with other insights: how to better manage interactions with vendors what should be your main goal as a cyber and third-party risk management professional training and certification opportunities at TPRA free membership to pr…
…
continue reading
1
S1E1: Guest: CEO for Third Party Risk Association, Julie Gaiaschi
31:50
31:50
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
31:50
Join the host, co-host and guest, Julie Gaiaschi (CEO for TPRA) in discussing breaches and third-party risk management, along with other insights: how to better manage interactions with vendors what should be your main goal as a cyber and third-party risk management professional training and certification opportunities at TPRA free membership to pr…
…
continue reading
1
The Value of On-Site Vendor Visits
6:13
6:13
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
6:13
Even in today's increasingly remote working environment, you need to perform on-site vendor visits. In this podcast, we'll highlight 6 reasons on-site vendor visits are a valuable part of your due diligence practice.Oleh Third-Party Risk Education
…
continue reading
1
6 Third-Party Risk Management Best Practices for 2023
4:45
4:45
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
4:45
For many, 2022 was a challenging year. From supply chain disruptions to regulatory updates, and the threat of malicious actors. In this podcast, learn six TPRM best practices to bring into 2023.Oleh Third-Party Risk Education
…
continue reading
1
5 Advantages of Outsourcing Third-Party Risk Management Tasks
4:10
4:10
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
4:10
TPRM involves many activities that can take up a lot of your team's times and resources. In this podcast, learn 5 advantages of outsourcing your third-party risk management tasks.Oleh Third-Party Risk Education
…
continue reading
1
How to Safeguard Your Organization From Third-Party Cyber Risk
2:19
2:19
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
2:19
Protecting your customers' sensitive information is important. It's important to understand the weaknesses and risks associated with your vendors. In this podcast, learn how to safeguard your organization from third-party cyber risk.Oleh Third-Party Risk Education
…
continue reading
1
4 Best Practices for Critical Vendor Contract Management
2:27
2:27
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
2:27
When dealing with your critical vendors, it's necessary to ensure that all parties know what is expected of them and what the dealbreakers are in the relationship. Learn 4 best practices of critical vendor contract management in this podcast.Oleh Third-Party Risk Education
…
continue reading
1
How to Create a Vendor Risk Management Program for a Health Organization
1:36
1:36
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
1:36
Keeping the patient proactive care model in mind when considering third-party risk management is important. This podcast highlights 4 steps to take in creating a TPRM program for a health organization.Oleh Third-Party Risk Education
…
continue reading
1
How to Prepare Your Vendors for ESG Disclosures
2:23
2:23
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
2:23
Although there is still limited legislation on mandatory ESG disclosures, regulators are continuing to address issues like climate change and modern slavery. This podcast highlights three ways you can help your vendor prepare for ESG disclosures.Oleh Third-Party Risk Education
…
continue reading
1
4 Exit Strategies for Offboarding a Vendor
1:44
1:44
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
1:44
Having an exit strategy in case your vendor relationship must come to an end is crucial. When faced with offboarding a vendor, you'll want to avoid any surprises. Learn 4 exit strategies in this informational podcast.Oleh Third-Party Risk Education
…
continue reading
1
3 Frequent Mistakes Regarding Vendor Financials
1:55
1:55
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
1:55
Vendor financial health includes many factors that your organization should be cognizant of and reviewing accordingly. This podcast highlights three mistakes to avoid and ensure there is comparability and consistency across your vendor financial reviews.Oleh Third-Party Risk Education
…
continue reading
1
3PO Podcast #69 | Through a lens - A Talk with Ian
1:09:12
1:09:12
Main Kemudian
Main Kemudian
Senarai
Suka
Disukai
1:09:12
Ian is a photographer, stand up comedian, and former trivia host. He throws some of the best parties in Tulsa! All around great guy and a great conversation about his life and how he ended up in good ole Tulsa, America. Follow us on socials and subscribe so you don't miss out on new episodes every Wednesday! https://www.facebook.com/ThirdPartyObser…
…
continue reading