top of page

Search Results

392 results found with an empty search

  • RSM US | Vendor Member Profile

    Learn more about RSM US, a TPRA Advocate Member, through this comprehension profile, including a bio, product functionality, contact info, and more. < Main Page < Previous Next > RSM US TPRM Services Consultant Catalyst CONTACT INFORMATION Amy Feldman Amy.Feldman@rsmus.com RSM’s purpose is to deliver the power of being understood to our clients, colleagues and communities through world-class audit, tax and consulting services focused on middle market businesses. The clients we serve are the engine of global commerce and economic growth, and we are focused on developing leading professionals and services to meet their evolving needs in today’s ever-changing business environment. RSM US LLP is the U.S. member of RSM International, a global network of independent audit, tax and consulting firms with 48,000 people across 120 countries. For more information, visit rsmus.com , explore our third-party risk management services , like us on Facebook , follow us on Twitter and/or connect with us on LinkedIn . TOP PRODUCT FUNCTIONALITY CATEGORIES Managed services for due diligence Vendor risk assessments (onsite or remote) Third-party risk management program audit/assessment Third-party risk management program building Dashboarding and analytics Cyber resiliency Advisory services Regulatory guidance related to third-party relationships Access to subject matter resources across risk topics Specialized vendor audits RESOURCES FROM THIS VENDOR MEMBER Load More EVENTS FROM THIS VENDOR MEMBER NEWS & UPDATES ADDITIONAL OPPORTUNITIES Previous Next

  • Safe Security | Vendor Member Profile

    Learn more about Safe Security, a TPRA Advocate Member, through this comprehension profile, including a bio, product functionality, contact info, and more. < Main Page < Previous Next > Safe Security TPRM Platform Advocate Member CONTACT INFORMATION Nicola Sanna President nicola.s@safe.security SAFE One delivers the industry's only data-driven, unified platform for managing all of your third-party and enterprise cyber risks. SAFE delivers a TPRM solution that runs with minimum human intervention. SAFE’s specialized AI agents autonomously manage the full vendor assessment lifecycle — from outreach and evidence collection to risk analysis, follow-ups, reporting and even treatment recommendations— without needing constant oversight or manual input. TOP PRODUCT FUNCTIONALITY CATEGORIES Autonomous TPRM Experience via Agentic AI Auto-Discovery of Third and Fourth Parties Automated Vendor Tiering AI-based Vendor Interactions Outside-in Assessment Auto-Discovery of Vendor Trust Centers, Security and Privacy Policies Auto Due Diligence Continuous Monitoring Regulatory Compliance Mapping AI-powered analytics, reporting and dashboards RESOURCES FROM THIS VENDOR MEMBER Load More EVENTS FROM THIS VENDOR MEMBER NEWS & UPDATES ADDITIONAL OPPORTUNITIES Previous Next

  • Vanta | Vendor Member Profile

    Learn more about Vanta, a TPRA Advocate Member, through this comprehension profile, including a bio, product functionality, contact info, and more. < Main Page < Previous Next > Vanta TPRM Platform Advocate Member CONTACT INFORMATION Adrian Conley Director, Specialty Sales adrian.conley@vanta.com Vanta accelerates every step of vendor due diligence, automating evidence collection, pre-filling questionnaires, and highlighting the most critical risks. Customers see up to a 50% reduction in time to complete risk assessments and a 3× faster time to findings, allowing teams to identify and remediate issues far more efficiently. With over 12,000 customers across 60 countries, including Atlassian, Quora, Omni Hotels, and ZoomInfo, Vanta is trusted globally to build, maintain, and demonstrate security, all in a way that’s real-time, automated, and AI-driven. TOP PRODUCT FUNCTIONALITY CATEGORIES Vanta is the leading trust management platform, helping organizations simplify, centralize, and automate their security, compliance, and third-party risk programs. By unifying Trust Center, GRC, Security Questionnaire Automation, and Third-Party Risk Management (TPRM) into one platform, Vanta enables organizations to build and demonstrate trust in real time. Third-Party Risk Management – Automate vendor reviews with AI-powered evidence collection, risk flagging, and renewal comparisons. Governance, Risk & Compliance (GRC) – Centralize frameworks and automate controls for SOC 2, ISO 27001, HIPAA, GDPR, and more. Trust Center – Publicly share your real-time security posture through an auto-updating, customizable trust portal. Security Questionnaire Automation – Enable instant, AI-assisted pre-filling and review of vendor questionnaires. Continuous Monitoring & Alerts – Maintain compliance through live monitoring of your infrastructure, vendors, and cloud stack. Framework & Standards Integration – Map once, comply everywhere: crosswalk controls across 20+ frameworks. Reporting & Analytics – Measure and visualize compliance, vendor performance, and remediation velocity. Remediation & Collaboration – Assign follow-ups, close findings faster, and track progress across teams. RESOURCES FROM THIS VENDOR MEMBER Load More EVENTS FROM THIS VENDOR MEMBER NEWS & UPDATES ADDITIONAL OPPORTUNITIES Previous Next

  • Eric Rosendaul | Citizens Bank

    Get to know Eric Rosendaul, Citizens Bank, and a member of TPRA's Board of Directors! < Back Eric Rosendaul Citizens Bank BOARD OF DIRECTORS I am currently a Team Manager within Third Party Assurance at Citizen's Bank. I've been with the bank 5+ years, having started in 2020 as a Sr. Analyst, then promoted in 2023 to a Team Manager. I currently lead a team of cyber and operational risk analysts which will soon expand to include compliance analysts in 2026. Prior to Citizens, I spent 6 years with Alliance Data Systems (now Bread Financial). I started out in the Legal department before quickly moving to their Vendor Management Office, where I quickly worked my way up from low risk assessments to the most critical, built a 4th party management program, and eventually a 2LOD program with the bank directly. I've worked fully remote since 2016 when my wife and I relocated from Columbus, OH to NW Ohio where we currently reside with our 3 kids, 2 dogs, 2 cats, 2 horses, and some chickens. We enjoy camping as a family and I have recently picked up side interest in watches. Next >

  • Locktivity | Vendor Member Profile

    Learn more about Locktivity, a TPRA Incubator Member, through this comprehension profile, including a bio, product functionality, contact info, and more. < Main Page < Previous Next > Locktivity TPRM Platform Incubator Member CONTACT INFORMATION info@locktivity.com (415) 234-0245 Locktivity isn't just using AI to make things faster, it's changing the way teams work for better outcomes with less effort. Locktivity is a purpose built platform to enable small GRC and security teams to shift third party risk management left. Locktivity combines the power of human expertise, AI insights, and automation to embed your policies into existing workflows. Move from checking compliance boxes, writing reports and chasing information to orchestrating and monitoring with ease. TOP PRODUCT FUNCTIONALITY CATEGORIES Inventory management Impact-driven risk assessments Right-sized due diligence AI-supported vendor assessments Automated audit reports Real-time visibility into your risk footprint OAuth token and integration monitoring Continuous monitoring RESOURCES FROM THIS VENDOR MEMBER Third Party Risk Management Maturity Model VENDOR MEMBER RESOURCE | August 28, 2024 Managing third party AI use and privacy risks VENDOR MEMBER RESOURCE | June 20, 2024 Load More EVENTS FROM THIS VENDOR MEMBER NEWS & UPDATES ADDITIONAL OPPORTUNITIES Previous Next

  • Tandem | Vendor Member Profile

    Learn more about Tandem, a TPRA Advocate Member, through this comprehension profile, including a bio, product functionality, contact info, and more. < Main Page < Previous Next > Tandem GRC Platform Advocate Member CONTACT INFORMATION Paul Hodnett Sales Manager phodnett@conetrix.com Tandem provides a simplified and streamlined vendor management software, designed to organize your vendor management program. Avoid complicated spreadsheets, manually updated calendars, and trying to organize files across network folders. Instead, use Tandem Vendor Management to efficiently oversee your vendors, create risk assessments, collect due diligence documents, and manage contracts and documents. Show More TOP PRODUCT FUNCTIONALITY CATEGORIES Manage and store your important vendor relationship details. Assess the significance of your vendor relationships using a consistent questionnaire. Rate each vendor's risk across a customizable list of risk categories. Organize important information about your vendor contracts in a central location. Automate the collection of third-party due diligence documents. Manage key dates through calendar, reports, and email reminders. Use more than 30 reports to gain insight into your vendor program. Conduct, document, and report on a variety of vendor reviews. Generate consistent and professional reports and documents effortlessly. Assign responsibility and various levels of access to users. RESOURCES FROM THIS VENDOR MEMBER A Better Way for Collecting Due Diligence Documents VENDOR MEMBER RESOURCE | August 28, 2025 Vendor Management Workbook VENDOR MEMBER RESOURCE | August 28, 2025 Load More EVENTS FROM THIS VENDOR MEMBER NEWS & UPDATES ADDITIONAL OPPORTUNITIES Previous Next

  • Women Lead | Erica Lane

    Learn about Erica Lane, Sr. Security Analyst for SPS Commerce, and TPRA's WNTPRM September 2025 Leader Spotlight. < See All < Previous Next > Erica Lane Sr. Security Analyst SPS Commerce Biography Erica is an Information Security Analyst and a communications grad. Erica began her IT career in 2013, transitioning to information security in 2019. She is an accomplished writer as well and loves blending her passions for writing and technology. Erica is, hands down, one of the most amazing people I have had the pleasure to work with. She joined our team at Venminder during an exceptional period of growth, and from day 1, she demonstrated her ability to work both collaboratively and as a leader amongst her peers. Erica never shied away from an opportunity to learn and grow and was often my sounding board. She is incredibly knowledgeable in multiple areas, including Cyber, InfoSec, TPRM, and Privacy. After joining our team, she quickly moved into a senior lead role and became the point of contact for many on our team, as well as clients and vendors. Erica leads with a mix of knowledge, kindness, and confidence that is rare to find in today's world. She is always looking to expand her portfolio of expertise as well as help others do the same. Her ability to look at various industries with a fair and critical eye makes her an asset to any team that wants someone who will always use best practices combined with critical thinking to make educated and risk-based decisions. I trusted her wholly and would be grateful for the opportunity to work with her again. Leadership Characteristics Worked as a trainer and senior analyst over the team, as well as excelled in mentoring new hires. Erica is a natural leader. Leadership Challenges Erica has met every challenge head-on and has often been in the position where she needs to think on her feet and take on a leadership role with little preparation. Key Take-a-ways Erica never shied away from an opportunity to learn and grow and was often my sounding board. She is incredibly knowledgeable in multiple areas, including Cyber, InfoSec, TPRM, and Privacy. After joining our team, she quickly moved into a senior lead role and became the point of contact for many on our team as well as clients and vendors. Erica leads with a mix of knowledge, kindness, and confidence that is rare to find in today's world. Fun Fact Erica is from Texas and has a wonderful family close to her. She is a mom to 3 exceptional little ones and spends her free time on adventures with her husband and little ones!

  • Women Lead | Vicki Dean

    Learn about Vicki Dean, Senior Strategic Sales Director for Supply Wisdom, and TPRA's WNTPRM February 2023 Leader Spotlight. < See All < Previous Next > Vicki Dean Senior Strategic Sales Director Supply Wisdom Biography Vicki Dean is Senior Strategic Sales Director at Supply Wisdom, an always-on monitoring solution helping companies stay ahead of supply chain disruptions. Building relationships in this industry and working as a partner to design risk-mitigating solutions has become a passion for Vicki. Prior to joining Supply Wisdom, Vicki was Senior Vice President at Shared Assessments, a member-driven organization delivering secure and resilient third-party partnerships and solutions, and the creator of the widely used SIG (Standardized Information Gathering) questionnaire. She is also a proud holder of the Certified Third Party Risk Professional (CTPRP) designation. Leadership Characteristics Vicki believes in always leading with kindness. Leadership Challenges At the beginning of her career, Vicki spent nearly a decade working for the National Agency of Record for General Motors. She was a young woman in a man’s world and was almost always the only female in the room. This experience taught her many things about how to be heard, back up her objectives with metrics, and lead with confidence. Although there were bumps in the road, she has always felt respected, and she attributes a lot of that to the fact that early on she applied a life motto which she refers to as the kindness principle. Vicki goes into every business situation with an open mind and kind heart, which has proven to be successful for her throughout her entire career. She has built entire teams based on this principle and has proven to leadership and boards that leading with kindness yields superior results. Key Take-a-ways "I have found the TPRM community to be one where collaboration and relationships are highly valued. We all should work hard every day to keep that collaboration going because it truly contributes to the greater good." Fun Fact More than anything Vicki enjoys spending time with her 3 daughters, Anna, Rayna and Jessica. She also has a passion for hiking, and her favorites so far are Devil’s Bridge in Sedona and the White Cliffs of Dover.

  • Women Lead | Merav Vered

    Learn about Merav Vered, VP GRC & Strategic Intiatives for Vendict Ltd., and TPRA's WNTPRM October 2023 Leader Spotlight. < See All < Previous Next > Merav Vered VP GRC & Strategic Intiatives Vendict Ltd. Biography Merav has 29 years of professional experience in Cybersecurity, focusing on developing security methodologies, regulation, consulting, and management of information security companies. In her experience, she has accompanied hundreds of organizations in certification audits for compliance with ISO Standards 27001, 27799, 27032, GDPR, and the Israeli Privacy Protection Law. This is both as the actual executor of the preparation and as the manager of the advisory team working in the field. Merav has vast experience in information security strategic consultancy to management in organizations, worldwide. In addition, she managed tech consulting areas, which included penetration tests and risk surveys. Merav's first role in the Information Security field was as Head of TPRM in one of the largest mobile companies in the country. "There were no best practices or methodologies back then, and I practically constructed them from scratch. I'm proud to say that 99% of these have become commonly used global best practices of TPRM." Leadership Characteristics Merav is always willing to listen, open to learning, keen to teach, and hungry to achieve. Leadership Challenges Merav's main leadership challenge was to locate the very precise team members who would strive to develop with similar professional concepts and personal aspirations as herself so that they could create an effective work engine, capable of leaving their mark. Key Take-a-ways "My favorite part of TPRM is the challenging moment in which I see the sudden change of expression in a CEO's eyes, when he/she realizes that TPRM is not a pain for the organization, but rather - a solution." Fun Fact In her spare time, Merav volunteers in various hospitals–in the Emergency Ward and the Children's Wards–where she can provide a mere smile or a comforting shoulder. To her surprise, many times these really make a world of difference to patients in pain, fear, and despair.

  • Risk Tide Solutions | Vendor Member Profile

    Learn more about Risk Tide Solutions, a TPRA Consultant Catalyst, through this comprehension profile, including a bio, product functionality, contact info, and more. < Main Page < Previous Next > Risk Tide Solutions TPRM Services Consultant Catalyst CONTACT INFORMATION contact@risktide.com (904) 686-8255 www.risktide.com About Risk Tide Solutions Risk Tide Solutions is a third-party risk management (TPRM) training company that helps organizations transform TPRM from a compliance burden into a strategic business enabler. Built by practitioners with 15+ years advising TPRM programs, our courses are scenario-driven and designed to be useful by Monday morning. Show More TOP PRODUCT FUNCTIONALITY CATEGORIES TPRM Foundational Training Full TPRM Lifecycle Coverage Annual Training Requirement Solutions Customized Corporate Training Programs AI Vendor Risk Training (AIMED Framework) Real-World Scenarios & Case Studies In-Person, Virtual & Hybrid Delivery Self-Paced Online Courses with CPE Credit Proprietary Frameworks: SIMPLE, PILAR, AIMED Regulatory & Compliance Alignment RESOURCES FROM THIS VENDOR MEMBER Load More EVENTS FROM THIS VENDOR MEMBER NEWS & UPDATES ADDITIONAL OPPORTUNITIES Previous Next

  • Women Lead | Kholofelo Mothibi

    Learn about Kholofelo Mothibi, Head of TPRM for Corebridge Financial, and TPRA's WNTPRM September 2024 Leader Spotlight. < See All < Previous Next > Kholofelo Mothibi Head of TPRM Corebridge Financial Biography Kholofelo Mothibi is a seasoned risk leader with 16 years of experience in auditing, compliance, controls assurance, and third-party risk management in the Technology and Financial sectors. Currently, she serves as the Director of Third Party Risk Management at Corebridge Financial, leading the development and implementation of a robust TPRM function. Her career spans notable positions at Barclays and IBM, where she gained extensive expertise in IT Security, Compliance, Internal Audit, Procurement, and the Chief Security Office. Originally from Johannesburg, South Africa, Kholofelo relocated to the US in 2015 to establish a centralized TPRM function for Barclays. She is recognized for her collaborative approach, innovative problem-solving, and dedication to fostering a culture of diversity and inclusion, earning her the Empower 100 Ethnic Minority Future Leaders 2021 accolade and a Barclays Diversity Award. Leadership Characteristics Kholofelo's leadership is characterized by a strong commitment to fostering team engagement and promoting a culture of collaboration and innovation. She has a proven track record of building successful teams by empowering individuals to reach their full potential. By providing clear guidance, support, and opportunities for professional growth, she has helped team members develop their skills and advance their careers. She is also adept at making tough decisions, balancing strategic objectives with the needs and well-being of her team. "My approach to leadership emphasizes open communication, integrity, and a focus on achieving excellence through collective effort." Leadership Challenges One of the most significant challenges Kholofelo faced was leading a global team through the initial phase of the pandemic. This period was marked by uncertainty and fear, with team members facing both professional uncertainties and personal anxieties. She prioritized empathy and compassion, ensuring that her team had access to necessary resources such as medical assistance, mental and emotional support, and flexibility for caregiving responsibilities. She led the effort to reprioritize their business objectives, focusing on impactful and feasible activities given the circumstances. "Personally, being miles away from my family in South Africa, I learned the importance of self-care and mental health, leading with authenticity and showing my team that it's okay to be vulnerable." Key Take-a-ways One key takeaway Kholofelo emphasizes is the critical role of adaptability and resilience in today's dynamic risk landscape. As the Director of TPRM, she advocate for leveraging advanced technologies and data analytics to enhance third-party risk management practices. Embracing digital transformation allows for more efficient and accurate risk assessments, enabling organizations to respond swiftly to emerging threats. Additionally, fostering strong industry partnerships and collaboration remains crucial for developing shared assessment frameworks that reduce redundancy and promote efficiency. "Continuous improvement and staying informed about regulatory changes are essential to maintaining robust risk management practices that protect the organization and drive strategic growth." Fun Fact Outside of Kholofelo's professional achievements, she has a unique and fun background in radio hosting. She was a radio presenter at Tshwane University of Technology in South Africa from 2005 to 2007, and at Kaya FM from 2011 to 2013. "This experience honed my communication skills and ability to engage with diverse audiences, adding an interesting facet to my multifaceted career."

  • Opening Remarks | Consultant Showcase

    TPRA is a membership-based, vendor-agnostic not-for-profit for Third Party Risk Management (TPRM) professionals. Opening Remarks Website Email LinkedIn Video Fact Sheet The Third Party Risk Association (TPRA) was created out of a necessity to build a community of like-minded third party risk professionals to allow for the sharing of best practices, exchanging of ideas, and influencing of an industry. Our founders are practitioners who built their own third party risk programs within their respective organizations and were looking for a vendor-agnostic community that could help them elevate their programs. When they couldn't find one, they created one . What started as a roundtable between colleagues has turned into a community of thousands of practitioners and TPRM service providers worldwide , all working towards the same goal: sharing knowledge and furthering the industry of TPRM. Presenter(s)

bottom of page