Search Results

Learn about Ejona Preci, Principle Manager - Cybersecurity Risk for FREENOW, and TPRA's WNTPRM April 2024 Leader Spotlight. < See All < Previous Next > Ejona Preci Principle Manager - Cybersecurity Risk FREENOW Biography Ejona Preçi is an enthusiastic cybersecurity professional with over 12 years of experience in the field, demonstrating a profound dedication to promoting diversity within the cybersecurity realm. She holds the position of Principal Manager for Cybersecurity Risk at FREENOW where her responsibilities encompass overseeing and managing both cyber and third-party risks. In addition, Ejona also serves as the President for WiCyS Germany, where she empowers women and other underrepresented groups in cybersecurity. With an impressive array of security certifications (CISSP, CISM, CRISC, and ITIL v4), Ejona possesses a robust cybersecurity background. She has earned recognition as a prominent figure in the industry, garnering features in online magazines and social networks for her roles as a mentor, author, podcaster, community builder, and keynote speaker. Ejona has been recognised as one of the 44 Cyber Power Women in the Top Cyber News Magazine and shortlisted for Cybersecurity Woman of the Year Award 2023. Recognizing the need for accessible and engaging cybersecurity content, Ejona has started her own podcast called "Cyberstar Talk Podcast”. Leadership Characteristics Ejona is passionate about fostering synergy within the workplace. She firmly believes that collaboration and the effective leverage of individual talents are the cornerstone of success. Her commitment to this ethos drives her to not only identify and nurture the unique strengths of her team members but also to create an environment where their talents can flourish. By promoting a culture of inclusivity and empowerment, she aims to elevate the collective expertise and ensure that every member is thriving in their roles. Leadership Challenges Historically, risk professionals were perceived as adversaries in workplaces. However, the mindset has now shifted towards recognizing the value they bring. Ejona's challenge is to demystify risk for managers and other business professionals, fostering better communication and collaboration while maintaining a focus on effective risk management. Key Take-a-ways “I follow the approach of conveying to risk owners that it's not me against them but us against the problem, striving to create a united front in addressing challenges.” Fun Fact Ejona enjoys traveling and has an insatiable curiosity about different cultures. Back when she was a kid, she wanted to become a TV presenter, and now, she's living a version of that dream as a cybersecurity podcaster and influencer!

Page Not Found. Looks like this page has been hidden or no longer exists. Go to Homepage

Aravo drives operational excellence and measurable business outcomes with centralized third-party risk management. < Back Aravo Solutions Wednesday, February 18, 2026 9:00 - 9:25 AM CT TPRM Platform Globe Mail Search Search Search Aravo’s platform reflects two decades of innovation, evolving the siloed supply chain, vendor, risk, and compliance management disciplines into a centralized approach. Manage the extended enterprise of third-party and Nth-party relationships in one intuitive, highly configurable SaaS solution. Presenter(s) Daniel Philemon Senior Business Solutions Consultant Daniel serves as a Senior Business Solutions Consultant at Aravo Solutions and has a passion for helping organizations see value in technology to understand risk through the context of third parties. Previous Next

LIVE WEBINAR Panel: TPRA 2026 Kick-Off & TPRM State of the Industry Thursday, January 8, 2026 Date & Time Thursday, January 8, 2026 at 4:00:00 PM UTC Intended Audience All TPRM Professionals Duration 1 hr CPE Credits 1 Fee Free Register Event Description Start the year off strong with us on January 8th,… Show More SPEAKER(S) INFORMATION CPE CREDIT PANELISTS CeFPro - Andreas Simou (Managing Director) - https://www.linkedin.com/in/andreassimou/ Cloud Security Alliance (CSA) - Troy Leach (CSO) - https://www.linkedin.com/in/troyleach/ Supply Wisdom - Jenna Wells (CEO) - https://www.linkedin.com/in/jenna-wells-031b1015/ Process Unity - Scott West (Vice President, Product Marketing) - https://www.linkedin.com/in/scottkwest/ About These Meetings Monthly Member Meetings are held every second Thursday of the month. Join us for relevant and informative roundtables, panels, and/or presentations on TPRM topics and pain points our members noted within the 2025 end-of-year survey. Who Should Attend All TPRM professionals are invited to these events, including TPRA Practitioner Members, TPRA Vendor Members, and Non-members. Cancellations In the event that this session would need to be canceled, you will be contacted and invited to register for the rescheduled event. Questions & Concerns For more information regarding administrative policies such as complaints, please contact us at info@tprassociation.org . TPRA Members are eligible to receive 0.5 CPE credits for every 30 minutes of the LIVE meeting that they attend. (Ex. Attend for 30 minutes = 0.5 CPE credits. Attend for 1 hour = 1 CPE credits). CPE Credit will be issued upon completion of the post-event survey. Please allow at least one week following the event to receive your CPE certificate.

Vanta is the leading trust management platform that helps organizations streamline security and compliance through automated GRC and vendor risk management tools. < Back Vanta Wednesday, October 22, 2025 11:30 - 11:55 AM CT GRC Platform Globe Mail Search Search Vanta is the leading trust management platform that helps companies centralize and automate their security and compliance workflows. Built to support frameworks like SOC 2, ISO 27001, and HIPAA, Vanta enables continuous monitoring, streamlined audits, and faster paths to compliance. Vanta’s Vendor Risk Management (VRM) solution gives organizations a powerful, scalable way to assess, manage, and monitor third-party risk. The platform includes a centralized vendor inventory, AI-powered questionnaire response automation, customizable scoring, and real-time monitoring and reporting—reducing the manual effort required to maintain a secure and compliant vendor ecosystem. Vanta empowers organizations to move faster without sacrificing security by unifying GRC and VRM under one platform. Whether you’re navigating regulatory requirements or maturing your risk management processes, Vanta provides the infrastructure to scale trust across your business. Presenter(s) Page Rossen Specialty Account Executive Page is a Senior Account Executive at Vanta, based in San Francisco. She’s spent over five years at Vanta helping customers of all sizes level up their security and compliance, and today she’s focused on supporting clients in their third-party risk programs. Previous Next

With RiskRecon, you can build a scalable, third-party risk management program and realize dramatically better outcomes. < Back RiskRecon by Mastercard Wednesday, October 22, 2025 9:00 - 9:25 AM CT Risk Ratings/Intelligence Globe Mail Search Search Organizations now largely entrust third parties with their most sensitive data and operational functions. To help safeguard your digital ecosystem from third-party risk, you need simple, real-time visibility of third-party partners’ cyber performance. RiskRecon by Mastercard, is the only continuous vendor monitoring solution delivering risk-prioritized action plans customized to match your risk priorities, providing the easiest path to understanding and acting on third-party cyber risk. RiskRecon effectively assesses cyber risk from third parties, 4th parties and Nth parties, ensuring organizations do not fall victim to cyber-attacks from the risks incurred through their business relationships. Our company, founded in 2015, and acquired by Mastercard in 2019, has been focused on enabling organizations to securely work with vendors and keep their critical information secure within their digital supply chain. Learn more about RiskRecon and request a demo at riskrecon.com . Presenter(s) Steve Tobias Lead Client Success Advisor As a Lead Client Success Advisor at RiskRecon by Mastercard, Steve partners with clients from various industry sectors to ensure they get the most out of the RiskRecon platform. He leverages his risk management experience to provide recommendations for incorporating vendor security ratings into and maturing third-party cyber risk management programs. His 20+ years of cybersecurity experience include information security, frameworks, governance, risk & compliance, third-party risk management and cyber… Show More Previous Next

Tandem offers a complete GRC software used by over 1700 organizations to manage the compliance burden of information security regulations and improve security posture. < Back Tandem Wednesday, October 22, 2025 3:30 PM - 3:55 PM CT GRC Platform Globe Mail Search Search Tandem provides a simplified and streamlined vendor management software, designed to organize your vendor management program. Avoid complicated spreadsheets, manually updated calendars, and trying to organize files across network folders. Instead, use Tandem Vendor Management to efficiently oversee your vendors, create risk assessments, collect due diligence documents, and manage contracts and documents. In addition to vendor management, Tandem offers a complete GRC software used by over 1700 organizations to manage the compliance burden of information security regulations and improve security posture. Tandem provides 11 unique yet integrated products as part of the GRC software suite. Presenter(s) Savannah Richardson GRC Content Analyst Savannah finds joy in education - striving to make information more accessible for teaching and sharing resources. She has a B.A. in Business Administration, an M.S. in Finance, and has earned the IT Risk Fundamentals ISACA certificate. Savannah currently works as a GRC Content Analyst, where she helps create and maintain cybersecurity and compliance content for Tandem. Her enthusiasm for learning shows with interest in topics such as GRC, risk… Show More Previous Next

Securis360 Inc. is a boutique cybersecurity and data privacy compliance management consulting firm based in Pittsburgh, PA. < Back Securis360 Inc. Wednesday, October 22, 2025 2:30 - 2:55 PM CT TPRM Services Globe Mail Search Search Securis360 Inc. is a boutique cybersecurity and data privacy compliance management consulting firm based in Pittsburgh, PA, founded by Mr. Harsh, who used to work at PwC in New York and holds a CISA certification. Our India office head, Mr. Nisarg Trivedi, was heading the EY practice in Ahmedabad for over 7 years. Our expertise lies in SOC1/SOC2, ISO27001, GDPR, HIPAA, HITRUST, CCPA, as well as Pentest, Cloud Security, Devops etc. Presenter(s) Harsh Kashiparekh CEO Securis360 Inc. is a boutique cybersecurity and data privacy compliance managament consulting firm based in Pittsburgh, PA, founded by Mr. Harsh who used to work at PwC in New York and holds a CISA certification. Our India office head Mr. Nisarg Trivedi was heading the EY practice in Ahmedabad for over7 years. Our expertise lies in SOC1/SOC2, ISO27001, GDPR, HIPAA, HITRUST, CCPA as well as Pentest, Cloud Security, Devops etc. Previous Next

Black Kite gives organizations a comprehensive, real-time view into cyber ecosystem risk so they can make informed risk decisions and improve business resilience while continuously monitoring more vendors, partners, and suppliers in an ever-changing digital landscape. < Back Black Kite Wednesday, October 22, 2025 1:00 - 1:25 PM CT TPRM Platform Globe Mail Search Search Black Kite is driving innovation in third-party risk management (TPRM) with a cyber ecosystem risk intelligence platform built on Accuracy, Speed, Transparency, and Collaboration. Our innovations empower organizations to make informed decisions, respond to risks with agility, and build a more resilient cyber supply chain. Presenter(s) Kalyan Ramkumar Solutions Engineer I am a cybersecurity professional specializing in third-party risk management (TPRM), digital forensics, and network security. As a Solutions Engineer at Black Kite, I partner with hundreds of TPRM programs across various industries to operationalize risk intelligence and enhance their risk management frameworks through AI-driven insights. My role focuses on helping organizations identify, assess, and mitigate risks within their extended vendor ecosystems. I combine this TPRM focus with a deep… Show More Previous Next

SecurityScorecard is a leading cybersecurity ratings platform that provides continuous risk monitoring, intelligence, and third-party risk management solutions to help organizations assess and improve the security posture of their vendors and supply chains. < Back Security Scorecard Wednesday, October 22, 2025 1:30 - 1:55 PM CT TPRM Platform Globe Mail Search Search About SecurityScorecard SecurityScorecard is the global leader in cybersecurity ratings and continuous risk monitoring, helping organizations around the world strengthen their security posture and mitigate risk. Our platform provides a comprehensive, real-time view of the cybersecurity health of an organization and its vendors by leveraging 10 key risk factors, including IP reputation, endpoint security, and application security. With over 12 million companies continuously monitored, SecurityScorecard enables organizations to gain critical insights into their attack surface, prioritize vulnerabilities, and take proactive measures to improve their defenses. Tools, Products, and Services Our platform offers a suite of tools and services designed to simplify and enhance cybersecurity management. Security Ratings, our flagship product, delivers actionable intelligence and visibility into third-party ecosystems to reduce the likelihood of breaches and ensure compliance with industry standards. Our Third-Party Risk Management (TPRM) capabilities streamline vendor assessments, reduce questionnaire workloads by 83%, and provide continuous monitoring to mitigate supply chain risks. Additionally, MAX, our managed detection and response (MDR) service, operationalizes supply chain risk management by identifying and remediating vulnerabilities in real-time, while our professional services such as Penetration Testing and Incident Response Tabletop Exercises help validate security measures and prepare for cyber threats. Designed for seamless integration, SecurityScorecard supports over 100 marketplace integrations, enabling businesses to embed our data into existing workflows and compliance tools. Whether for enterprise cyber risk management, regulatory compliance, or board-level reporting, SecurityScorecard empowers organizations to make smarter, data-driven decisions and build a stronger, more resilient cybersecurity strategy. Presenter(s) Previous Next

Exiger is revolutionizing the way corporations, government agencies and banks navigate risk and compliance in their third-parties, supply chains and customers through its software and tech-enabled solutions. < Back Exiger Wednesday, October 22, 2025 3:00 PM - 3:25 PM CT TPRM Platform Globe Mail Search Search Exiger is a global risk-intelligence and supply-chain transparency company that equips more than 550 corporate and government clients—including over 150 Fortune 500 firms and 40+ agencies—with AI-driven technology and expert services to spot, measure, and mitigate third-party, supply-chain, cyber, ESG, and financial-crime threats. Our mission is to make the world a safer and more transparent place to succeed, and that ethos underpins everything from our analytics pipelines to the multilingual investigative teams that support them. At the center of our portfolio is 1Exiger, an integrated SaaS platform that unifies our company’s screening, monitoring, visualization, and collaboration capabilities. 1Exiger couples award-winning AI with configurable risk models to deliver real-time scoring, dashboards, and deep investigative workflows, all in a FedRAMP-authorized environment for sensitive public-sector work. Complementing the core platform, Exiger’s supply-chain product suite offers an integrated, end-to-end solution that lets users map multi-tier supplier networks, analyze item-level risks, and launch targeted remediation—all via a single web interface. The broader technology ecosystem is modular: DDIQ provides automated due-diligence profiles and an analytics dashboard that screens billions of structured and unstructured records in minutes; Supply Chain Explorer (SCE) instantly maps nth-tier suppliers and overlays risk scores; Supply Dynamics (SDX) threads raw-material and part-level data to illuminate bottlenecks; Insight 3PM streamlines third-party onboarding and workflow management; and Ion Channel brings software-bill-of-materials insight to uncover hidden vulnerabilities. Together, these tools give customers a coherent “people + tech” solution set—from rapid entity screening to predictive supply-chain analytics—backed by Exiger’s global team of former prosecutors, data scientists, and intelligence analysts. Presenter(s) Skyler Chi SVP, GTM Skyler has significantly contributed to Exiger since joining in mid-2015, excelling as a forensic accountant and supply chain risk management (SCRM) expert. His work has included leadership roles in the independent Monitorship of HSBC, with parallel responsibilities to both the Department of Justice and Financial Conduct Authority. He has also played a crucial role in supply chain risk management (SCRM) for some of the world’s largest governments, including major segments… Show More Previous Next

Learn more about RapidRatings, a TPRA Advocate Member, through this comprehension profile, including a bio, product functionality, contact info, and more. < Main Page < Previous Next > RapidRatings Risk Ratings/Intelligence Advocate Member CONTACT INFORMATION Eric Evans Managing Director, Partnerships & Alliances evans@rapidratings.com RapidRatings sets the standard for financial health transparency between business partners, transforming the way leading companies manage enterprise and financial risk. The company provides the most sophisticated analysis of the financial health of public and private companies from over 140 countries worldwide. RapidRatings primary sources private company vendor financial statements directly on behalf of our customers. Show More TOP PRODUCT FUNCTIONALITY CATEGORIES In-depth financial analysis of global public and private companies Global financial data and private company ratings sourced from over 150 countries. Risk Assessment, TPRM, supply chain management Predictive analytics, with a 90% accuracy rate Financial Reports that are easily digestible, accessible, and shareable Vetting, onboarding new suppliers, and monitoring existing suppliers Comprehensive Reporting Suite and predictive analytics API Integrations Configurable program/category dashboards 73 ratios for a quantitative analysis on core health and financial resiliency RESOURCES FROM THIS VENDOR MEMBER Why Corporate Payments History Falls Short As A Financial Health Indicator VENDOR MEMBER RESOURCE | August 6, 2025 Tariffs, Supply Chains, and a 90-Day Window: What Companies Should Be Doing Today VENDOR MEMBER RESOURCE | April 23, 2025 RapidRatings Releases 2024 Annual Default Review VENDOR MEMBER RESOURCE | April 2, 2024 Load More EVENTS FROM THIS VENDOR MEMBER NEWS & UPDATES ADDITIONAL OPPORTUNITIES Previous Next