Search Results

Explore TPRM service provider resources, including tools and documents to enhance your risk management strategy. Access helpful links and information from various providers. Vendor-Provided Resources Here you can find links to resources supplied by TPRA Vendor Members (TPRM Service Providers). Some of these resources require you to input information to obtain the document. Note: TPRA does not support one particular service provider over another, nor do we benefit from providing you the links below. Read and implement at your own risk. If you are a TPRA Vendor Member and have a resource or link you would like to see added to this page, please submit through our Vendor Submissions form , or send it to Meghan Schrader at meghan.schrader@tprassociation.org for review. Filter by Resource Type Blog Checklist Company Information Datasheet Framework Guide Guidebook Infographic Magazine Newsletter Other Playbook Podcast Presentation Report Research State of the Industry Survey Results Template Tool Toolkit Video Whitepaper eBook Third Party Threat Hunting LLC eBook AI and Third-Party Risk: Solutions for Assessing and Managing Your AI Vendors and Systems February 9, 2026 Artificial Intelligence is no longer a future concern—it’s a present-day disruptor. As vendors and partners increasingly adopt AI-enabled products and services, third-party and supply-chain risk professionals face a new challenge: managing a rapidly evolving risk landscape with limited guidance. This book delivers the clarity and structure needed to navigate that complexity. Designed for business professionals—not just technologists—this practical guide walks readers through the full lifecycle of AI-related vendor risk, from intake to offboarding. With hands-on examples, actionable templates, and real-world use cases, it equips readers to assess and manage AI risk confidently, even in environments without dedicated IT security teams. It also explores how AI can be used within TPRM programs to enhance efficiency and accuracy. Read All Center for Financial Professionals (CeFPro) Magazine Connect Magazine - Issue 16 January 26, 2026 Connect Magazine Issue 16 explores how financial institutions are navigating an increasingly volatile and interconnected risk landscape. From machine learning under market stress and operational resilience in an uncertain world, to concentration risk, third-party dependencies, regulatory shifts and the growing influence of AI, this issue examines the pressures reshaping risk management as the industry moves toward 2026. Through expert analysis, trendwatch features and onstage insights from senior risk leaders, Issue 16 highlights the need for anticipatory governance, stronger resilience frameworks, and integrated approaches to managing overlapping disruptions across technology, regulation, geopolitics, and markets. Read All Continuity Strength Tool Vendor Management Capacity Calculator January 21, 2026 Do you have enough people to manage your vendor portfolio? Most teams don't. They're managing 50, 100, 200+ vendors with a skeleton crew, patching together assessments between fire drills and audit prep. Traditional vendor assessment takes 20-30 hours per vendor annually. Your team is drowning in questionnaires while new vendors keep getting added. This calculator shows you exactly where you stand. Input your vendor count, current staffing, and how often you reassess. You'll see your actual capacity utilization and whether you're underwater. The results explain why vendor management always feels impossible: Assessments take 3+ weeks. Vendors don't have BCPs. Your analysts are maxed out. The math just doesn't work. Use this before your next budget conversation. It shows what you're actually short and what automation could free up based on your specific situation. Read All Center for Financial Professionals (CeFPro) Magazine Connect Magazine - Issue 15 January 20, 2026 Issue 15 of Connect Magazine offers a sharp year-in-review for risk professionals, bringing together the standout themes that shaped 2025. Featuring a curated selection of the year’s most-read articles, the issue captures a period defined by converging pressures - from geopolitical and regulatory shifts to AI acceleration, climate risk, and rising non-financial risk. Inside, readers revisit the topics that dominated boardroom agendas, including global trade tensions, generative AI, climate stress testing, third-party risk, and the human factors influencing risk decisions, offering a concise snapshot of how the industry navigated a year of constant change. Read All Center for Financial Professionals (CeFPro) Whitepaper TPRM in 2025: Cracking the Code on Burnout, Bottlenecks, and Budget Constraints January 20, 2026 Published in March 2025 in collaboration with CERTA, this CeFPro research examines the growing gaps in third-party risk management across financial services. The report highlights how outdated systems, manual processes, and stretched teams are increasing risk exposure and slowing compliance. Backed by data from leading financial institutions, it explores the disconnect between rising third-party risk complexity and the tools used to manage it, and how leading firms are closing the gap. Explore the findings to understand how organisations are strengthening TPRM frameworks with greater efficiency and control. Read All Center for Financial Professionals (CeFPro) Whitepaper Supplier Stability In Operational Resilience 2025: Follow-Up Insights and Analysis January 20, 2026 Supplier Stability in Operational Resilience 2025 examines how financial institutions are strengthening resilience as regulatory expectations intensify. Drawing on joint research from Escode and CeFPro, the report highlights critical gaps in supplier risk ownership, cloud dependency, and continuity planning, and explores how software escrow is emerging as a key component of resilience assurance. Explore the findings to understand where resilience frameworks are succeeding, and where greater accountability is still needed. Read All Bitsight Research Exposed: Cyber Risk in the Financial Sector and Its Supply Chain January 9, 2026 The financial sector relies on a complex web of technology providers—but many of these third parties present hidden and under-monitored cyber risks. Bitsight analyzed over 41,000 financial organizations and 50,000 vendor relationships to identify the most critical suppliers and assess their cybersecurity performance. The findings reveal systemic risk, poor security hygiene among key vendors, and significant monitoring gaps across the sector. Key Takeaways Bitsight identified the 99 most critical third-party suppliers to the financial sector Some of the largest vendors have the weakest security performance Unmonitored suppliers have 2.9x more critical CVEs and 2.8x more KEVs Financial institutions monitor only 36.3% of their vendors on average Continuous monitoring correlates with improved visibility and stronger risk communication Download the full report to understand where your greatest supply chain risks may be hiding—and how to proactively reduce exposure. Read All Bitsight Guide A Third-Party Risk Management Framework Template: 10 Critical Elements January 9, 2026 Build a third-party risk management framework that stands up to today’s threats—and tomorrow’s scrutiny. Third-party risk is no longer just a cybersecurity issue—it’s a business imperative. As regulatory demands tighten and digital ecosystems expand, organizations need a third-party risk management framework that goes beyond checkbox assessments and ad hoc processes. This eBook serves as your third-party risk management framework template—a structured, scalable guide to managing vendor and third-party cyber risk at every stage of the vendor lifecycle. You’ll discover how to build a defensible, data-driven program that enables visibility, accountability, and continuous improvement. Whether you're starting from scratch or enhancing an existing third-party risk management program, you’ll learn how to strengthen assessments, streamline workflows, and foster cross-functional collaboration—all while ensuring defensibility and speed. Read All Bitsight Datasheet Top Five AI Governance Questions To Ask in Your Vendor Risk Assessment January 9, 2026 Is your vendor risk assessment process ready for the AI era? Download this practical guide to modernizing how you evaluate third-party AI risk. Whether you're conducting a cybersecurity supply chain risk management review or onboarding new partners, this resource helps you dig deeper into how vendors govern, deploy, and secure AI technologies. Read All Continuity Strength Survey Results Vendor Risk Management Survey Results - 2025 January 8, 2026 Thank you to everyone who participated in our vendor risk management research this fall. We analyzed responses from 64 organizations across financial services (59%), technology, healthcare, and manufacturing to identify critical gaps in third-party risk programs. Key findings reveal systematic weaknesses where organizations have implemented initial programs but failed to mature core capabilities: 68.8% lack formal BCP support for vendors 47.2% operate with minimal or reactive monitoring 41.9% have no formal resilience scoring methodology 37.5% face significant assessment delays (5+ weeks) We've organized the complete analysis into five focused reports so you can prioritize topics most relevant to your organization. Each report includes detailed findings, industry-specific implications, regulatory context, and actionable solutions. Select your priority reports here: https://continuitystrength.com/vendormgmtsurvey-2025-published-tpra Looking forward to your feedback on the findings. Read All NetRise, Inc. Report Gaining Device Software and Component Visibility at a Global Asset Management Firm January 7, 2026 A leading global asset management firm manages trillions of dollars across offices on multiple continents. Its network relies on thousands of third-party devices, including firewalls, virtual private network (VPN) concentrators, branch routers, security cameras, and network access control systems. Despite a mature vulnerability management program, the firm lacked automated visibility into the device software and component inventory inside these systems. Vendor documentation was incomplete, and manual audits were time-consuming and inconsistent. Read All NetRise, Inc. Presentation The Dependency Mirage: Hidden Vulnerabilities in Compiled Binaries January 7, 2026 Most organizations trust their SBOMs and vulnerability scanners to reflect what’s running in production — but they don’t. In this RSA Conference session, Craig Heffner, Senior Staff Engineer at NetRise and creator of Binwalk, exposes how hidden dependencies and build-time decisions introduce vulnerabilities invisible to traditional security tools. Drawing from real-world case studies, the talk reveals how manifest-based scanning reflects intent, not reality — and how Binary Composition Analysis (BCA) exposes what’s truly compiled into your software. Read All LOAD MORE

Join TPRA’s Women in TPRM program to uplift and support women in the industry through mentorship, leadership development, and recognition. Empowering the next generation of women leaders in TPRM. Our Goals Our Goals The Women in TPRM (WNTPRM) Program is dedicated to empowering women in the Third Party Risk Management (TPRM) industry. This program is open to all , regardless of TPRA membership status or gender identity. Through collaborative efforts, we aim to: Uplift Women in TPRM : Advocate for professional growth and recognition. Provide Access to Higher-Paying Roles: Break barriers to equitable opportunities in TPRM careers. Celebrate & Support Women: Establish a platform to spotlight achievements and nurture community. Cultivate Future Leaders: Develop the next generation of trailblazers in TPRM. What We Do What We Do We meet monthly to strategize on achieving these goals and to address challenges within the field. You do not need to be a TPRA member to participate in this program, but some facets of this program are member-specific, such as our 'Women in TPRM' Slack Channel, where TPRA Practitioner Members can continue meaningful conversations, share resources, and collaborate. Standard Practitioner Membership is free , and all TPRA Practitioner Members are invited to join our Slack Forum here . Members and non-members can join our LinkedIn group to stay connected. Our Initiatives Include: Advocating for the importance of women in TPRM through educational resources and outreach. Providing access to tools, techniques, and insights that uplift and empower women in the field. Showcasing and celebrating women leaders who inspire and shape the TPRM landscape. Sharing job opportunities from organizations committed to supporting women in TPRM. Join us as we drive change, foster leadership, and build a brighter future for women in TPRM! Meetings Upcoming Meetings Watch On-Demand Meetings February 17, 2026 1:00 – 2:00 PM CT Women In TPRM Meeting Read All March 17, 2026 1:00 – 2:00 PM CT Women In TPRM Meeting Read All April 28, 2026 1:00 – 2:00 PM CT Women In TPRM Meeting Read All Programs & Resources Women Lead Spotlights Our Women Lead Program is dedicated to showcasing inspiring leaders by highlighting their stories. Our goal for this program is to learn from and be inspired by women leaders in the field of Third Party Risk Management (TPRM) throughout various industries. View our Leaders and learn how to nominate and/or apply to become a spotlight. View Spotlights Resource Sharing Library Our Women in TPRM Resource Sharing Library contains a variety of women in business-related materials. Included are reports on the latest women in business trends and statistics, blogs and articles on relevant and current happenings, and TED Talks featuring inspiring women in business educating others on how to navigate the business world and find success in their careers. View Library Leadership Ladders Originally developed by TPRA's Women in TPRM "Lead" work group, this training activity is designed for all current & aspiring leaders within the Third Party Risk Management (TPRM) industry. Inspired by the classic "Shoots and Ladders" game, it is an all-in-one roadmap to leadership in the form of a nostalgic, virtual board game! E ach box on the board is linked to a valuable resource–including customized guides, blogs, videos, quizzes, and more–with the goal of enhancing your leadership potential through buildable skills and expert insights. Any professional, regardless of what stage they're at in their career, can find value in this activity. Check It Out Recorded Meetings View meeting recordings and PowerPoints from our monthly Women In TPRM Meetings. Recorded Meetings Resources Statistics Women only represent 15-20% of the Governance, Risk and Compliance profession (GRC World Forums, 2021). Read Full Article Only about 25% of every 100 security and risk management (SRM) executives are women (Gartner Inc., 2019). Read Full Article Gender-diverse and inclusive teams outperform gender-homogeneous, less-inclusive teams by an average of 50 % (Gartner Inc., 2019). Read Full Article According to one survey, 24% of global cybersecurity employees are women, and 18% of CIOs/CTOs are female (Deloitte, 2021 ). Read Full Article Quotes "Diversity matters not just because increasing representation of minorities and women in a fast growing and critical field is the right thing to do, but because a variety of viewpoints are key to solving hard problems." SVP, General Counsel - Legal, Bitsight Johanna Werbach “...change must come from within the industry and not be mandated from external parties.” Chief Data and Privacy Officer, MeritB2B Karie Burt "With different backgrounds and perspectives and voices at the table and in an environment where their contributions are really valued, you benefit from a much more expansive conversation and one that’s much more likely to uncover the full range of possibilities and solutions." VP & GM, TPRM, BitSight Vanessa Jankowski Read "Women in CyberSecurity"

Learn more about Lema, a TPRA Advocate Member, through this comprehension profile, including a bio, product functionality, contact info, and more. < Main Page < Previous Next > Lema TPRM Platform Advocate Member CONTACT INFORMATION Eddie Dovzhik CEO contact@lema.ai The Risk Engineering Platform Show More TOP PRODUCT FUNCTIONALITY CATEGORIES Agentic Risk Engineering: A powerful AI, trained by expert vulnerability researchers that correlates artifacts, public intel, and relationship signals to surface the risks that genuinely threaten your business – and delivers the exact steps to shut them down. Forensic AI Assessment: Automates the analysis of vendor reports and documents to reveal what’s hidden in ALL submitted artifacts. Open-Source Recon: Automates the collection and analysis of publicly available vendor information to surface what you should know - including what vendors prefer you didn’t. Blast Radius Monitoring: Monitors the interface between you and the vendor - revealing how they’re actually used inside your organization, tracking access to critical assets, data, procurement activity, and scope drift. RESOURCES FROM THIS VENDOR MEMBER Load More EVENTS FROM THIS VENDOR MEMBER NEWS & UPDATES ADDITIONAL OPPORTUNITIES Previous Next

Learn all about the Third Party Risk Association (TPRA), our mission, vision, and key team members. Our Story The Third Party Risk Association (TPRA) was created out of a necessity to build a community of like-minded third party risk professionals to allow for the sharing of best practices, exchanging of ideas, and influencing of an industry. Our founders are practitioners who built their own third party risk programs within their respective organizations and were looking for a vendor-agnostic community that could help them elevate their programs. When they couldn't find one, they created one . What started as a roundtable between colleagues has turned into a community of thousands of practitioners and TPRM service providers worldwide , all working towards the same goal: sharing knowledge and furthering the industry of TPRM. Our Story Our Team Board of Directors Our Partners What We Do Activities in support of this purpose include, but are not limited to... 01 Promoting Value Promoting the value that third party risk professionals and practitioners add to their organizations. 03 Sharing Knowledge Researching, disseminating, and promoting to practitioners and stakeholders knowledge concerning third party risk and its appropriate role in control, risk management, and governance. 05 Bringing People Together Bringing together third party risk professionals and practitioners from all countries to share information, experiences, tools, and techniques. 02 Providing Guidance Providing comprehensive professional, educational, and development opportunities, as well as standards and other professional practice guidance. 04 Educating Educating practitioners and other relevant audiences on best practices in third party risk. 06 Advancing the Industry Creating work groups and advisory councils dedicated to creating universal resources, offering advice, and supporting start-ups through mentorship and feedback. The organization was formed by Julie Gaiaschi and Jon Ehret on October 22, 2018 and is a 501(c)(6) not-for-profit, headquartered in Iowa. Meet the Team TPRA strives daily to promote the value that third party risk professionals and practitioners add to their organizations; educate community members and other relevant audiences on best practices in third party risk; research and disseminate information on third party risk tools and techniques; and build third party risk guidance as a community. But we couldn't do any of this without a great team. Which is why we promote a collaborative, flexible, and inclusive work culture. We value innovation and enjoy exploring new ideas. We have self-starting, mission-driven team members who aren't afraid to bring creative ideas to the table and have the passion and energy to drive those ideas to fruition. With that said, we put people at the center of everything we do and love to celebrate milestones and wins! As we continue to grow, we are always on the lookout for creative and passionate professionals who are always learning and teaching, while understanding the bigger picture. Julie Gaiaschi CEO & Co-Founder OFFICER Read More Heather Kadavy Director of Membership Success SENIOR STAFF Read More Meghan Schrader Marketing & Communications Manager SENIOR STAFF Read More Kelsey Manigly-Haney Marketing & Membership Coordinator STAFF Read More Hilary Jewhurst Senior Membership & Education Coordinator SENIOR STAFF Read More Board of Directors Vincent Scales CVSHealth CHAIRMAN OF THE BOARD Read More Morgan Binder Stripe BOARD OF DIRECTORS Read More Christopher Strazishar Corebridge Financial BOARD OF DIRECTORS Read More Courtney Turner Deere & Co BOARD OF DIRECTORS Read More Chris Phillips Lendmark Financial Services BOARD OF DIRECTORS Read More Verity Billson Experian Ltd BOARD OF DIRECTORS Read More Eric Rosendaul Citizens Bank BOARD OF DIRECTORS Read More Our Partners

Watch Women in TPRM recordings of past monthly meetings. Hear insights from women leaders and practitioners driving change in third party risk management. Meetings WNTPRM On-Demand Meetings Tuesday, January 20, 2026 1:00 – 2:00 PM CT Women In TPRM Meeting PowerPoint Watch Video Tuesday, December 16, 2025 1:00 - 2:00 PM CT Women In TPRM Meeting PowerPoint Watch Video Tuesday, November 18, 2025 1:00 - 2:00 PM CT Women In TPRM Meeting PowerPoint Watch Video Tuesday, September 16, 2025 1:00 - 2:00 PM CT Women In TPRM Meeting PowerPoint Watch Video Tuesday, July 15, 2025 1:00 - 2:00 PM CT Women In TPRM Meeting PowerPoint Watch Video Tuesday, June 17, 2025 1:00 - 2:00 PM CT Women In TPRM Meeting PowerPoint Watch Video LOAD MORE

Empowering Enterprises seeks to highlight organizations that are not only making strides in TPRM but are also committed to gender equality and diversity. Empowering Enterprises Spotlighting the Leaders Driving Change in TPRM Welcome to "Empowering Enterprises," a program dedicated to celebrating and amplifying the voices of companies that are making a significant impact in the Third-Party Risk Management (TPRM) industry by supporting and uplifting women. In a field traditionally dominated by men, these forward-thinking enterprises are breaking barriers, fostering inclusivity, and paving the way for a new generation of women leaders in TPRM. "Empowering Enterprises" seeks to highlight organizations that are not only making strides in TPRM but are also committed to gender equality and diversity. We believe that empowering women in the workplace leads to stronger, more resilient businesses. Through this program, we will shine a light on those companies that are leading by example, creating opportunities for women to thrive, and setting new standards for the industry. "Empowering Enterprises" is more than just a showcase—it's a call to action. We encourage all companies in the TPRM field to reflect on their own practices and consider how they can contribute to a more inclusive and equitable industry. If you're interested in being highlighted, apply here . Supply Wisdom Supply Wisdom is dedicated to ensuring equality and diversity within its organization, enabling these goals through its programs, policies, and practices. Read More Empowering Enterprises Application Complete this form if your organization is interested in becoming an "Empowering Enterprises" spotlight. Selected companies will be contacted for an interview, which will be recorded and used to make a video, as well as an accompanying article. Criteria All companies in the TPRM space welcome to apply. If you are a TPRM service provider, you must be a TPRA Vendor Member to be approved. You may apply at any time, but your application will not be accepted until your company's membership status is verified. Point of Contact First name* Last name* Job title* Email* Company Information Company name Website URL* Career Page URL* LinkedIn Page URL* 1-2 sentence description of company* What maturity level do you think your program is in?* Choose one Brief company bio* Logo* Upload File Questionnaire Can you share any statistics or data on the representation of women in leadership positions? How has this changed over time (optional)?* What specific programs or initiatives do you have in place to support the career development and advancement of women within your organization?* How does your company support women's professional networks and mentorship opportunities, both within the organization and in the wider industry? * Can you provide examples of how your organization has celebrated and recognized the achievements of women employees? * What measures are in place to ensure a supportive and inclusive work environment for women, including policies on work-life balance, parental leave, and flexible working arrangements? * How does your organization address and prevent gender bias in hiring, promotions, and performance evaluations? * Anything else we should know? Submit

Our Women in TPRM Resource Sharing Library contains a variety of women in business-related materials featuring inspiring women in business educating others on current topics. Resource Library Women In TPRM (WnTPRM) New Posts Jun 5, 2018 Insight: The Surprising Truth About How Others See Us, How We See Ourselves, and Why the Answers Matter More Than We Think Book Club Most people feel like they know themselves pretty well. But what if you could know yourself just a little bit better—and with this small improvement, get a big payoff…not just in your career, but in your life? Research shows that self-awareness—knowing who we are and how others see us—is the foundation for high performance, smart choices, and lasting relationships. There’s just one problem: most people don’t see themselves quite as clearly as they could. Fortunately, reveals organizational psychologist Tasha Eurich, self-awareness is a surprisingly developable skill. Integrating hundreds of studies with her own research and work in the Fortune 500 world, she shows us what it reallytakes to better understand ourselves on the inside—and how to get others to tell us the honest truth about how we come across. Through stories of people who have made dramatic gains in self-awareness, she offers surprising secrets, techniques and strategies to help you do the same—and how to use this insight to be more fulfilled, confident, and successful in life and in work. Aug 1, 2025 Top 10 Most Influential People in Risk and Compliance to Follow in 2025 Quotable Women Jennifer A. Thomason: Mentoring Multiple Generations to Reach Their Full Potential Mar 1, 2022 The Gifts of Imperfection: 10th Anniversary Edition: Features a new foreword and brand-new tools Book Club NEW YORK TIMES BESTSELLER • This tenth-anniversary edition of the game-changing #1 New York Times bestseller features a new foreword and new tools to make the work your own. For over a decade, Brené Brown has found a special place in our hearts as a gifted mapmaker and a fellow traveler. She is both a social scientist and a kitchen-table friend whom you can always count on to tell the truth, make you laugh, and, on occasion, cry with you. And what’s now become a movement all started with The Gifts of Imperfection, which has sold more than two million copies in thirty-five different languages across the globe. What transforms this book from words on a page to effective daily practices are the ten guideposts to wholehearted living. The guideposts not only help us understand the practices that will allow us to change our lives and families, they also walk us through the unattainable and sabotaging expectations that get in the way. Brené writes, “This book is an invitation to join a wholehearted revolution. A small, quiet, grassroots movement that starts with each of us saying, ‘My story matters because I matter.’ Revolution might sound a little dramatic, but in this world, choosing authenticity and worthiness is an absolute act of resistance.” Leadership Learn how to break barriers, exceed expectations, and be the most effective leader you can be with Ted Talks, blogs, and more! View Category Quotable Women Learn from inspiring women leaders on topics like women in business, balancing work and home life, carving out space for yourself in professional and personal settings, and so much more! View Category Technology Learn about Women in Tech through videos, articles, interviews, and more! View Category Soft Skills Being a leader is often about mastering the more subtle aspects of communication and interpersonal relationships. Learn how through a variety of resources. View Category Mentorship Recently joined a mentorship program or considering joining? Review these resources to ensure your experience is a success! View Category Book Club Find out what the women leaders in our community are reading, and join in for insightful advice! View Category Diversity & Inclusion Find blogs, research, timely reports, Ted Talks, and more in this category! View Category Share a Resource Have a resource you'd like to add to this library? Fill out the form below! TPRA staff will review your submission and add it to our Women In TPRM Library, provided it aligns with our content guidelines. Please note that these need to be pre-existing resources that can be found via a link. We are no longer accepting unpublished resources. Full Name * Email (for follow-up purposes only)* Check this box to have your name displayed with your resource listing. Leave unchecked for the resource to be noted as "anonymous." Resource Category* Diversity & Inclusion Technology Soft Skills Leadership Mentorship Book Club Quotable Women Other Resource Type* Ted Talk Video Blog/Article Interview Research Report Other Resource Title* Resource Description* Resource Publish Date* Month Day Year Please note the date the resource was originally published. Resource URL* Anything else we should know? Please keep in mind that TPRA reserves the right to reject resource submissions for any reason. Submit

This page is dedicated to showcasing the inspiring Women Leaders and their stories. Our goal for this program is to highlight and learn from women leaders in the field of Third Party Risk Management (TPRM) throughout various industries. Back Women Lead Program Welcome to the Women In TPRM (WNTPRM) "Women Lead" Program! This page is dedicated to showcasing inspiring Women Leaders by highlighting their stories. Our goal for this program is to learn from and be inspired by women leaders in the field of Third Party Risk Management (TPRM) throughout various industries. If you know of an inspiring Leader you think should be featured by WNTPRM, complete the form linked below! Apply Now Leader Spotlights Maria Alhasoon VP Vendor Management Byline Bank WNTPRM February 2026 Leader Spotlight February 1, 2026 Read More Melissa Denman TPRM Lead Zoom WNTPRM November 2025 Leader Spotlight November 1, 2025 Read More Heather Vahovich Director Third Party Risk Management (TPRM) Novanta WNTPRM August 2025 Leader Spotlight August 20, 2025 Read More April Harrison Sr. Director of Marketing & Communications Trust Your Supplier WNTPRM January 2026 Leader Spotlight January 1, 2026 Read More Oksana Zbyranyk Chief Compliance and Delivery Officer Truvo Cyber WNTPRM October 2025 Leader Spotlight October 1, 2025 Read More Hilda AndelizGomez VP. Enterprise Third Party Risk Performance Analyst Valley Bank WNTPRM August 2025 Leader Spotlight August 1, 2025 Read More Corina Reymer AVP, Information Security The Walt Disney Company / Partners Federal Credit Union WNTPRM December 2025 Leader Spotlight December 1, 2025 Read More Erica Lane Sr. Security Analyst SPS Commerce WNTPRM September 2025 Leader Spotlight September 1, 2025 Read More Jill Zakarian Partnerships Manager Ncontracts WNTPRM July 2025 Leader Spotlight July 1, 2025 Read More LOAD MORE

Explore TPRA careers and join the nation’s fastest growing third party risk organization. Help shape the future of TPRM with a mission-driven team. TPRA Careers Come join o ur Team! Be a part of the fastest growing, vendor agnostic Third Party Risk organization in the nation! Help us influence and entire industry by working with a community of Third Party Risk practitioners and vendors to develop and promote the standard in Third Party Risk Management practices. Our Culture TPRA strives daily to promote the value that third party risk professionals and practitioners add to their organizations; educate community members and other relevant audiences on best practices in third party risk; research and disseminate information on third party risk tools and techniques; and build third party risk guidance as a community. But we couldn't do any of this without a great team. Which is why we promote a collaborative, flexible, and inclusive work culture. We value innovation and enjoy exploring new ideas. We are looking for self-starting, mission-driven team members who aren't afraid to bring creative ideas to the table and have the passion and energy to drive those ideas to fruition. With that said, we put people at the center of everything we do and love to celebrate milestones and wins! As we continue to grow, we are always on the lookout for creative and passionate professionals who are always learning and teaching, while understanding the bigger picture. If this is you, we look forward to hearing from you soon!! Current Openings Job Type Select Job Type Location Select Location Search Jobs Number of jobs found: 1 Multimedia Marketing Intern Remote View Job

Resource Library Browse our free resources created by TPRA staff based on industry guidance and best practices to help you build and improve your third party risk management program. Additional free resources, including assessment and questionnaire templates, are available for all TPRA Practitioner Members. Become a member for FREE to access these awesome materials! Join Now > Filter by Resource Type EBOOKS INFOGRAPHICS TRAINING ACTIVITY VIDEOS INFOGRAPHICS Why Automate Sanctions Monitoring? A one-page infographic that explains how automating sanctions and watchlist monitoring strengthens compliance, reduces manual effort, and helps organizations detect risks in real time. DOWNLOAD INFOGRAPHICS Creating a TPRM Budget A one-page infographic that guides you through creating a Third Party Risk Management (TPRM) budget that shows value and return on investment (ROI), while also supporting future program growth. DOWNLOAD INFOGRAPHICS Establishing Accountability in Third Party Risk Management A practical one-page guide to establishing accountability in Third Party Risk Management (TPRM) using the widely recognized Three Lines of Defense model. This resource helps TPRM professionals define roles, responsibilities, and assurance functions that ensure risks are managed effectively and accountability is embedded into organizational culture. DOWNLOAD INFOGRAPHICS 5 Tips for Proactively Managing TPRM Regulatory Compliance A one-page infographic that helps you cut through the noise and regain control of third-party regulatory compliance—so you're not always stuck reacting when the next audit, breach, or regulation hits. DOWNLOAD VIDEOS TPRM 101: Reporting on Residual Risk Explore how to effectively report and communicate residual risks to decision-makers as the final step in Pre-Contract Due Diligence. WATCH VIDEOS TPRM 101: Risk Escalation and/or Acceptance This episode explains how to handle risks that cannot be remediated—through escalation, exception handling, or formal acceptance. WATCH VIDEOS TPRM 101: Risk Remediation Understand how to document, mitigate, and manage risks identified during vendor assessments—before finalizing agreements. WATCH VIDEOS TPRM 101: Risk Identification Learn how to uncover and categorize risks in a potential third-party relationship as part of the Pre-Contract Due Diligence phase. WATCH TRAINING ACTIVITY Leadership Ladders This training activity is designed for all current and aspiring leaders within the Third Party Risk Management (TPRM) industry. VIEW VIDEOS TPRM 101: Pre-Contract Due Diligence (PCDD) - Part 1 This video introduces the second phase of the TPRM lifecycle—Pre-Contract Due Diligence—and outlines how to structure this critical stage before onboarding a third party. WATCH VIDEOS TPRM 101: Contract Review This video unpacks the Contract Review phase of the TPRM lifecycle, guiding practitioners on how to protect the organization by documenting enforceable third-party expectations in legal agreements. WATCH VIDEOS TPRM 101: Program Planning & Oversight Explore the foundational phase of the TPRM lifecycle—Program Planning & Oversight. This video introduces the core building blocks for establishing a sustainable, enterprise-aligned third-party risk management program. WATCH VIDEOS TPRM 101: What Is Third Party Risk Management (TPRM)? But before jumping right into the Life Cycle, it is important we first understand the foundations of third party risk management, including basic definitions, risk types, calculating and evaluating risk, and finally, the basics of addressing risk exposure created by your third parties. WATCH EBOOKS Third Party Risk Management (TPRM) 101 Guidebook TPRA’s TPRM 101 Guidebook is the first comprehensive, community-built resource that walks you through every phase of the third-party risk management lifecycle—with clear guidance, practical tools, and real-world examples from industry practitioners. DOWNLOAD

Learn more about Ventara Risk Solutions, a TPRA Consultant Catalyst Member, through this comprehension profile, including a bio, product functionality, contact info, and more. < Main Page < Previous Next > Ventara Risk Solutions TPRM Services Consultant Catalyst Member CONTACT INFORMATION Steve Alameda Managing Principal steve@ventararisksolutions.com Ventara Risk Solutions helps SMB and mid-market teams keep revenue-critical outsourcing moving by making vendor approvals, renewals, and change events predictable and defensible. We deliver business-risk-based third-party risk management (TPRM) across intake and tiering, due diligence, contracting alignment, onboarding, monitoring, and exit readiness for modern SaaS and AI-enabled services. Show More TOP PRODUCT FUNCTIONALITY CATEGORIES Material Business Risk Tiering & Intake Governance — Classify by revenue/operations criticality, data exposure, access, and dependency to right-size effort. Risk Acceptability Criteria & Decision Standards — Define what is acceptable, who decides, and how exceptions are approved and time-bounded. Use-Case Due Diligence & Evidence Calibration — Right-size evidence to the actual use case and risk tier, not generic questionnaires. Decision-Ready Approvals & Renewals (Residual Risk & Treatment Options) — Provide residual risk, prioritized actions, and clear approve/remediate/exception options leaders can act on. Contract Controls, Obligations & Assurance Rights — Operationalize requirements through enforceable terms, audit/assurance rights, and flow-down obligations. Material-Change Triggers & Vendor Change Governance (SaaS/AI) — Prevent drift with triggers for AI features, data-flow changes, and sub-processor updates. Onboarding Control Activation & Operational Handoffs — Turn requirements into operating reality through access, configuration, ownership, and cadence setup. Ongoing Monitoring & Renewal Cadence — Establish tier-based monitoring routines, renewal rhythm, and escalation paths that keep critical vendors on schedule. Remediation, Exceptions & Closure Verification — Drive remediation closure with verification, compensating controls, and defined expiry for exceptions. Exit Readiness, Transition Planning & Offboarding Resilience — Reduce disruption risk with exit planning, access removal, and data return/deletion evidence. RESOURCES FROM THIS VENDOR MEMBER Load More EVENTS FROM THIS VENDOR MEMBER NEWS & UPDATES ADDITIONAL OPPORTUNITIES Previous Next

Get to know Meghan Schrader, TPRA's Marketing & Communications Manager! < Back Meghan Schrader Marketing & Communications Manager SENIOR STAFF Meghan graduated Summa Cum Laude from Trine University in 2022 with a Bachelor of Arts in English and Communications. She was the 2022 Jannen School of Arts and Sciences Distinguished Student of the Year, the Trine University 2022 Robert B. Stewart Award Winner, and was awarded the Gold Key for outstanding academic performance. At Trine, she was the Director of Creative Design for the HAC Media Team and Editor-in-chief of the Writers' Block Literary Journal. She began working as an intern at TPRA in July of 2021 before officially joining the team in June of 2022. In her role as Marketing Manager, Meghan provides organization-wide marketing strategy in support of TPRA's mission to further the third party risk profession through knowledge sharing and networking. Meghan currently lives in Fort Wayne, Indiana with her fiancé and their dog. She has a passion for reading and writing and hopes to one day see her novels-in-progress published. Next >