Search Results

Gregory Rasner, CEO, Third Party Threat Hunting LLC Securing SaaS Applications: A Comprehensive Approach to Cloud Risk Management Track 1: Anchoring TPRM Essentials & Best Practices Wednesday, April 9, 2025 11:00 - 11:50 AM Atlantic Ballroom 1 SESSION DESCRIPTION Learn how to stop the continual raids by the bad actors (pirates!) and lower your third-party risk by leveraging continuous monitoring effectively. It is not enough to have tools, the organization must have a plan and run-book on how to target pirates attacks more effectively. SPEAKERS Gregory Rasner CEO Third Party Threat Hunting LLC Gregory is a CEO, author, educator, speaker, and leader in the field of cybersecurity, zero trust, and third-party risk. With over 25 years of experience in IT and cybersecurity, he has helped numerous clients and organizations improve their security posture and reduce their risk exposure. He is the founder and CEO of Third Party Threat Hunting LLC, a cybersecurity consulting firm that specializes in a wide range of areas, including… Show More Previous Next

Luke Nordlie, Global Head of Third Party Risk Solutions, S&P Global Threading the Needle in a Haystack: Using Big Data to Pinpoint Real Risk in Third-Party Management Track 4: Charting the Course (Regulation & Compliance) Tuesday, April 8, 2025 3:10 - 4:00 PM Tides 1 & 2 SESSION DESCRIPTION In a world flooded with third-party data, finding real risk is like threading a needle in a haystack. As a global leader in data and analytics, S&P Global is redefining how financial institutions cut through the noise—transforming vast datasets into actionable intelligence. This session explores how big data, advanced analytics,… Show More SPEAKERS Luke Nordlie Global Head of Third Party Risk Solutions S&P Global Luke Nordlie is the Global Head of Third Party Risk Solutions at S&P Global, driving risk management strategies for institutions worldwide. Previously, he was Director of Business Development at TruSight, a third-party risk assessment service founded by leading banks. There, he advanced the Assessments-as-a-Service model to simplify risk assessments across the industry. Luke spent 14 years at Crowe Horwath as a Senior Manager in Risk Consulting, advising over 50 financial… Show More Previous Next

Julie Gaiaschi, CEO & Co-founder of the Third Party Risk Association (TPRA) TPRA Trivia: How Well Do You Know TPRA? General Session Wednesday, April 9, 2025 4:10 - 5:00 PM Atlantic Ballroom 4-8, Main Level SESSION DESCRIPTION Think you know the Third Party Risk Association (TPRA) inside and out? Put your knowledge to the test in our TPRA Trivia Showdown! This fun and interactive session will challenge attendees with questions about TPRA’s history, mission, events, membership benefits, key initiatives, and more. Compete for exciting prizes , including exclusive TPRA swag ,… Show More SPEAKERS Previous Next

Jared Howe, Senior Solutions Consultant, Mitratech The Future of TPRM: Securing the Advantage in an Era of Regulatory Uncertainty Track 1: Anchoring TPRM Essentials & Best Practices Tuesday, April 8, 2025 2:10 - 3:00 PM Atlantic Ballroom 1 SESSION DESCRIPTION Businesses today face the most disruption since the COVID-19 pandemic shut down global supply chains, forcing companies to quickly reassess their vendor relationships. Now, shifts in U.S. government regulatory enforcement priorities have added to the morass of issues to contend with — including budget shortfalls across organizations of all size… Show More SPEAKERS Jared Howe Senior Solutions Consultant Mitratech Jared is a Solutions Consultant, helping clients understand how Mitratech solutions can help them overcome challenges and improve their organisation's performance. He's been working in the legal, risk, and compliance space for 11 years, with 8 of those specifically focused in the TPRM and GRC space. In his free time, Jared enjoys getting lost on one of his motorcycles whenever he isn't spending time with his family. Previous Next

Bob Kolasky, Senior Vice President, Exiger Navigating the Interconnected Risk Waters Through Data and Advanced Modeling of Risk Track 3: Surfing the Waves of Innovation & Automation Wednesday, April 9, 2025 11:00 - 11:50 AM Atlantic Ballroom 3 SESSION DESCRIPTION SPEAKERS Bob Kolasky Senior Vice President Exiger Bob Kolasky is Senior Vice President for Critical Infrastructure at Exiger where he focuses on developing cutting-edge risk management solutions for critical infrastructure companies and supporting government agencies. In this role, Mr. Kolasky leads market strategy for addressing third party and supply chain risk in critical infrastructure and delivering analysis to support enhanced business and government operations. Mr. Kolasky also serves as a Nonresident Scholar in Technology and International Affairs… Show More Previous Next

Austin Starowicz, Director, Solutions Consulting, RiskRecon DEMO: RiskRecon – Risk to the Nth-Party Degree Track 1: Anchoring TPRM Essentials & Best Practices Tuesday, April 8, 2025 10:00 - 10:50 AM Atlantic Ballroom 1 SESSION DESCRIPTION Third party relationships are closest and may prove to be the most tangible risks to your business, yet the whole supply chain of your business partners still pose a substantial threat. Most organizations’ vendor relationships extend to the 8th party. CISOs need to understand this web of connectedness in order… Show More SPEAKERS Austin Starowicz Director, Solutions Consulting RiskRecon by Mastercard Senior Level Engineer with over 19 years of proven experience in Cybersecurity, Information Security, Information Technology, and IT Management. Passion for helping customers understand complex technology solutions in order to protect High-Value Assets. He leads efforts to help customers combat third-party risk management challenges and drives product delivery methods across the Mastercard Cybersecurity solution set. Previous Next

Andy Fiumefreddo, Sr Manager - Third Party Cyber Risk, American Family Insurance The Resilience Revolution Starts with Your Culture Track 2: Fortifying the Shoreline (Operational Risk & Resilience) Wednesday, April 9, 2025 2:10 - 3:00 PM Atlantic Ballroom 2 SESSION DESCRIPTION SPEAKERS Previous Next

Mark Ewert, Director, Vendor Management, Penn National Insurance & Mary Granville, Assistant Vice President – Account Executive, Alliant Insurance Services Navigating the Insurance Waters Track 4: Charting the Course (Regulation & Compliance) Tuesday, April 8, 2025 4:10 - 5:00 PM Atlantic Ballroom 1 SESSION DESCRIPTION Third party insurance related best practices. The conversation will include a discussion of: Types of insurance coverages and Minimum Limits Reviewing a certificate of insurance AM Best Ratings Insurance Tracking Best Practices SPEAKERS Mark Ewert Director, Vendor Management Penn National Insurance President and Secretary of Partners Mutual Insurance Company. He joined the company full-time in 1994 as Manager-Human Relations, Product Analysis, and Home Office Services. He was elected to the position of Secretary in 1999 and was elected to his current position of Executive Vice President effective January 1, 2002. Mark served as Treasurer from January 2014 to May 2015. The Secretary duties were returned to Mark in May 2015. Mark… Show More Mary Granville Assistant Vice President – Account Executive Alliant Insurance Services Joined Gallagher in 2022 | Started in Insurance in 2005 Mary brings prior client service and leadership experience, coupled with her drive and passion to help protect her clients from manageable risks. Prior to joining Gallagher, Mary was an Account Executive at Aon, Assured Partners, and Hub International. Mary started her career as an intern in 2003 and then Assistant Account Executive in Gallagher’s NYC office. Mary attended Temple University,… Show More Previous Next

Steve Cobb, CISO, SecurityScorecard Supply Chain Resilience: Enhancing Detection and Response Strategies Track 2: Fortifying the Shoreline (Operational Risk & Resilience) Tuesday, April 8, 2025 10:00 - 10:50 AM Atlantic Ballroom 2 SESSION DESCRIPTION Recent supply chain disruptions have highlighted the critical need for effective Supply Chain Detection and Response (SCDR) to achieve deep visibility and proactive risk management. Join SecurityScorecard’s CISO, Steve Cobb, as he examines the global impact of recent outages and the lessons learned. This session will explore the essential role… Show More SPEAKERS Steve Cobb CISO SecurityScorecard Steve Cobb is SecurityScorecard's Chief Information Security Officer (CISO) bringing more than 30 years of leadership consulting surrounding IT infrastructure, cybersecurity, incident response, and cyber threat intelligence. Since joining SecurityScorecard in 2023, Steve has been responsible for providing strategic direction for the IT and Information Security strategies for the organization. Steve manages the entire IT and cybersecurity budgets, leads the effort to achieve FedRAMP Ready and StateRAMP Ready statuses, regularly… Show More Previous Next

Michael Gall, Solutions Leader, Black Kite DEMO: Black Kite Solutions for Streamlining Vendor Assessments Track 4: Charting the Course (Regulation & Compliance) Tuesday, April 8, 2025 11:00 - 11:50 AM Tides 1 & 2 SESSION DESCRIPTION Vendor assessments can be slow, manual, and inconsistent. In this demo, we’ll show how Black Kite simplifies the process by automating data collection, standardizing risk scoring, and delivering real-time insights. You’ll see how to quickly assess vendors, prioritize risks, and align with compliance standards—without drowning in spreadsheets or chasing down… Show More SPEAKERS Michael Gall Solutions Leader Black Kite Mike Gall leads the Solutions team at Black Kite, bringing over a decade of experience as a transformational leader in technology and digital innovation. He has designed and delivered impactful solutions for major brands across retail, manufacturing, Critical Infrastructure, IoT, and financial industries. Known for his expertise in cybersecurity, strategic problem-solving, and technology integration, Mike excels in bridging technical concepts with business outcomes. His leadership at Black Kite focuses on… Show More Previous Next

Jillian Kwong, Research Scientist, Cybersecurity at MIT Sloan (CAMS) Roundtable: MIT Research "Securing the Fleet: Collaborative Cybersecurity Strategies for Large Firms and their Small and Medium Suppliers" Track 4: Charting the Course (Regulation & Compliance) Wednesday, April 9, 2025 2:10 - 3:00 PM Tides 1 & 2 SESSION DESCRIPTION Tired of seeing your supply chain vulnerable to cyberattacks? Many large companies expect their small and medium suppliers to fend for themselves against cyber threats. The reality is that increasing security requirements coupled with limited resources, knowledge gaps, and understaffed security teams cripple small and medium enterprises’ (SMEs) ability to be… Show More SPEAKERS Previous Next

Rob Sheehan, SCRM/TPRM Project/Program Manager, 10X National Security Risk Assessment Techniques Identifying and Evaluating Third-Party Risks Track 1: Anchoring TPRM Essentials & Best Practices Wednesday, April 9, 2025 1:00 - 1:50 PM Atlantic Ballroom 1 SESSION DESCRIPTION While there's no "one size fits all" approach to a risk assessment, there are fundamental principles to consider that are applicable regardless of your industry. SPEAKERS Robert Sheehan SCRM/TPRM Project/Program Manager 10X National Security Robert Sheehan is the SCRM/TPRM Project/Program Manager at 10X National Security. He believes in bridging the gaps between security, intelligence, logistics and acquisitions, while enabling and supporting agencies to perform their mission without fail. Within his role, Robert is responsible for establishing the agency’s program of systematically managing acquisition risks, identifying vulnerabilities and threats throughout the supply chain, and navigating and developing mitigation strategies to combat those risks. Mr. Sheehan… Show More Previous Next