Third Party Risk Association (TPRA) Announces Launch of Professional Certification Program

ANKENY, IOWA — 16 SEPTEMBER 2022 — Third Party Risk Association (TPRA) announced the official launch of the Third Party Risk Association Certification Program, open to all members of the third-party risk management (TPRM) industry to verify their knowledge, skills, and abilities within their profession.

Professional certifications are a way to verify earner knowledge and understanding of a topic, establish professional credibility, and advance one’s career within a specialized profession. They allow earners to distinguish themselves from their peers by demonstrating commitment to mastering their skills and excelling in their field.

According to MBO Partners, professional certifications are also known to boost efficiency. The advanced training, information and knowledge gained from specialized coursework can provide earners with up-to-date tools and technical strategies that will serve to guide and direct them in the execution of projects, allowing them to manage all aspects of their work more effectively. Studies also show that employees who invest in certifications tend to earn higher salaries. MBO Partners notes that Project Management Professional (PMP) certification recipients report median salaries that are 26% higher than those who are not PMP certified.

Third Party Cyber Risk Assessor (TPCRA) Certification

Pre-registration is now open for TPRA’s first certification, the Third Party Cyber Risk Assessor (TPCRA) Certification. The TPCRA Certification is a specialized qualification designation to confirm understanding and skill in the assessment of third-party cybersecurity controls and processes, as well as validate competency in the creation, execution, and management of third-party cyber risk assessments. In addition, the Certification will authenticate and add credibility to TPRM professional expertise as a third-party cyber risk assessor.

The TPCRA is recommended for those who assess, monitor, and review third-party cybersecurity and information technology controls, as well as identify and mitigate risk related to said controls. Eligibility for this certification includes three or more years of experience in a full-time risk management/analyst and/or cybersecurity-related role, though substitutions may be obtained for up to one year of work experience.

TPCRA Certification Overview

The TPCRA Certification examination is designed to be challenging and ensure that the participant is fully knowledgeable, competent, and proficient in necessary cybersecurity and information technology assessment terms and techniques. The examination will cover the domains of: cybersecurity and TPRM basics, pre-contract due diligence, continuous monitoring, physical validation, disengagement due diligence, cloud due diligence, and reporting and analytics.

The examination is a 150-question, multiple-choice assessment with a variety of question formats, including scenario-based, true/false, and ‘choose best response.’ It will be offered either virtually or in person and monitored via an assigned proctor, with a 3-hour time limit.

TPRA is also offering optional training sessions to allow participants to be fully prepared for the examination. Purchase of TPCRA Training includes a copy of the book Cybersecurity and Third Party Risk: Third Party Threat Hunting by educator and TPRM leader, Gregory Rasner.

At this time, all training sessions will be taught by Rasner, giving participants direct access to the author of the text on which the examination is based. These lessons are designed to be interactive, allowing for conversation and classified learning, with a blend of informative lectures, open discussions, and workshops.

Limited Time Promotion

To celebrate the launch of their Certification Program and first certification, TPRA is offering a limited-time promotion to the first 30 individuals who register for the TPCRA Examination, Training, or Training and Examination Bundle. These individuals will receive a copy of the book, Cybersecurity and Third Party Risk: Third Party Threat Hunting, a TPCRA bookmark signed personally by the author, and 30 days of virtual access to the author and TPCRA Training Instructor, Rasner, to ask him any questions participants may have prior to their examination.

Interested individuals can learn more and pre-register for the Third Party Cyber Risk Assessor (TPCRA) Certification on the TPRA website at www.tprassociation.org/tpra-certifications. Training and testing will begin in January 2023.

Founded in 2018, Third Party Risk Association (TPRA) was created out of a necessity to build a community of like-minded third-party risk professionals to allow for the sharing of best practices, exchanging of ideas, and influencing of the industry. Membership is available for both third-party risk management practitioners and service provider organizations, and is designed to promote collaboration, education, and advancement of the industry as a whole. This organization is a 501(c)(6) not-for-profit.

###

Third Party Risk Association (TPRA) and Third Party Risk Association Certification Program are either registered trademarks or trademarks of Third Party Risk Association (TPRA) in the United States and/or other countries.

The names of actual companies and products mentioned herein may be the trademarks of their respective owners.