Search Results

Jillian Kwong, Research Scientist, Cybersecurity at MIT Sloan (CAMS) Roundtable: MIT Research "Securing the Fleet: Collaborative Cybersecurity Strategies for Large Firms and their Small and Medium Suppliers" Track 4: Charting the Course (Regulation & Compliance) Wednesday, April 9, 2025 2:10 - 3:00 PM Tides 1 & 2 SESSION DESCRIPTION Tired of seeing your supply chain vulnerable to cyberattacks? Many large companies expect their small and medium suppliers to fend for themselves against cyber threats. The reality is that increasing security requirements coupled with limited resources, knowledge gaps, and understaffed security teams cripple small and medium enterprises’ (SMEs) ability to be… Show More SPEAKERS Previous Next

Michael Siegrist, Cloud Manager | Risk Solutions (GRC, IRM, Ethics, Third Party Risk and ESG), OneTrust & Michael Duggan, Managing Partner, CastleHill Managed Risk Solutions LLC Operational Resiliency: Best Practices to Enhance Your Program & Ensure Regulatory Compliance Track 4: Charting the Course (Regulation & Compliance) Wednesday, April 9, 2025 11:00 - 11:50 AM Tides 1 & 2 SESSION DESCRIPTION Amidst growing regulatory pressure, a rapidly evolving threat landscape, and a global uptick in third-party risk and AI governance, resiliency has never been more top of mind for TPRM programs. As DORA, NIS2 and other regulations come into effect, organizations across verticals and geographies are actively prioritizing their digital operational… Show More SPEAKERS Michael Siegrist Cloud Manager | Risk Solutions OneTrust Michael is a seasoned veteran in the Governance, Risk and Compliance Industry with 20 years of experience. Michael started as a compliance counsel for companies in a diverse set of industries including Hospitality, Retail, Gaming and Healthcare. He then transitioned into GRC technology serving in senior roles at LockPath (acquired by Navex); MetricStream, RSA Archer and ServiceNow. He is currently the Cloud Manager for the Risk Solutions at OneTrust. Michael… Show More Michael Duggan Managing Partner CastleHill Managed Risk Solutions, LLC Michael Duggan is a Managing Partner at CastleHill Managed Risk Solutions. He leads CastleHill’s Third-Party Risk and GRCaaS (managed services) practices. With over 25 years of professional experience in global finance, risk and compliance, mergers and acquisitions, and general operations, he has led large-scale transformation projects that create efficient, scalable risk and compliance programs. Previous Next

Rafael DeLeon, SVP, Industry Engagement & Chinyere Watson, Lead Third Party Risk Expert –Content and Education, Venminder, an Ncontracts Company Decoding Risk: ERM, IRM, GRC and Everything in Between Track 4: Charting the Course (Regulation & Compliance) Tuesday, April 8, 2025 2:10 - 3:00 PM Tides 1 & 2 SESSION DESCRIPTION Risk management is packed with acronyms like Enterprise Risk Management (ERM), Integrated Risk Management (IRM), and Governance, Risk and Compliance (GRC). What’s the difference? Does it really matter for your financial institution? This session is a deep dive into the core components of each of these risk management frameworks. It… Show More SPEAKERS Chinyere Watson Lead Third Party Risk Expert - Content and Education Venminder an NContracts Company Chinyere Watson is a seasoned third-party risk professional with extensive experience in regulatory risk management for financial institutions. As the Third-Party Risk Expert for Ncontracts, she advises on the compliance and effectiveness of products with the latest regulatory requirements. She has a proven track record of overseeing compliance and risk management for third-party services across various sectors, including affiliate relationships, IT, marketing, and insurance. With over 20 years of experience,… Show More Rafael DeLeon SVP, Industry Engagement Venminder, an Ncontracts Company Rafael E. DeLeon is a vibrant spokesperson with a wealth of knowledge on risk management, governance, and regulatory compliance for financial institutions. In addition to handling educational initiatives, thought leadership, and outreach to regulators, industry leaders, and association partners for Ncontracts, Mr. DeLeon is on the Board of Directors of MainStreet Bancshares, Inc., parent company of MainStreet Bank in Fairfax, Virginia. Before joining Ncontracts, Mr. DeLeon completed a successful career… Show More Previous Next

Brian Shaw, VP of North America, Certa AI Third Party Risk By Exception Track 3: Surfing the Waves of Innovation & Automation Wednesday, April 9, 2025 2:10 - 3:00 PM Atlantic Ballroom 3 SESSION DESCRIPTION Managing third-party risk is becoming increasingly complex, requiring organizations to balance speed, accuracy, and compliance while mitigating security threats. The latest industry trends emphasize a proactive, exception-based approach to risk management, leveraging automation and AI to enhance efficiency. By shifting from periodic assessments to real-time risk assessment, businesses can streamline… Show More SPEAKERS Brian Shaw VP of North America Certa.ai Brian has automated risk and compliance for over 25 years, supporting hundreds of Fortune 500 and mid-market firms across all industries. Since 2011, Brian has focused on Third-Party Risk, Compliance and Performance Management, Master Data Management and Know your Customer (KYC). At Certa, Brian serves as Vice President, Head of North America. Previous Next

Aidan Thaggard, Senior Solutions Engineer, Supply Wisdom Key Trends & Insights from Supply Wisdom’s 2nd Annual Risk Management Survey Track 4: Charting the Course (Regulation & Compliance) Wednesday, April 9, 2025 1:00 - 1:50 PM Tides 1 & 2 SESSION DESCRIPTION How are companies evolving their risk management strategies in 2025? Join us for an exclusive presentation of the results from Supply Wisdom’s 2nd Annual Risk Management Survey. We’ll reveal key trends, industry benchmarks, and the biggest challenges risk professionals are facing today. Discover where your organization stands compared to peers… Show More SPEAKERS Aidan Thaggard Senior Solutions Engineer Supply Wisdom A native of Western Maryland, Aidan Thaggard graduated from Georgetown University with a double major in Marketing and Finance and a minor in English. He began his career in Risk with Fannie Mae’s Risk and Controls department, and from there transitioned to Iron Mountain’s Third-Party Risk Management team as a Risk Analyst. Over two years at Iron Mountain, Aidan facilitated the detailed profiling and assessment of thousands of third parties across a complex global… Show More Previous Next

Eric Rosendaul, Manager, Third Party Risk, VP, Citizens Roundtable: Nth Parties Track 1: Anchoring TPRM Essentials & Best Practices Wednesday, April 9, 2025 2:10 - 3:00 PM Atlantic Ballroom 1 SESSION DESCRIPTION The Endless Depths of Nth Parties: A Risky Voyage Beyond the Horizon Avast, brave souls ready to explore the uncharted depths of Nth-party risk ! In this interactive roundtable, we’ll navigate the murky waters of managing risk beyond immediate vendors, diving deep into the complexities of sub-tier relationships and hidden dependencies.… Show More SPEAKERS Eric Rosendaul Manager, Third Party Risk, VP Citizens Eric Rosendaul has spent the last nine years of his career in various capacities within third-party risk. Currently, he’s a manager at Citizens leading a highly skilled team of senior analysts. Prior to that, he was a senior analyst on the team, conducting onsite and virtual assessments on critical and high-risk third parties. Before joining Citizens, Eric spent 5 years at Alliance Data Systems (now Bread Financial). While there, he… Show More Previous Next

View the agenda for our 2025 In-Person Conference, "Navigating Risky TPRM Waters"! Main Page Conference Agenda Filter by Track Select Track Early Check-In Monday, April 7, 2025 3:00 - 5:00 PM Group Registration Alcove, Main Level Check-In Drop anchor early and get a head start on your TPRM voyage with early check-in for "Navigating Risky TPRM Waters." Learn More Pirate Parley Network Event Monday, April 7, 2025 6:00 - 8:00 PM Oceanfront Courtyard, Main Level Network Event Join us for the first network event of the conference! Learn More Breakfast & Check-In Tuesday, April 8, 2025 7:30 - 8:45 AM Atlantic Ballroom 4-8, Main Level Meal Fuel Up for the TPRM Voyage! Learn More Welcome & Kick-Off Tuesday, April 8, 2025 8:45 - 9:00 AM Atlantic Ballroom 4-8, Main Level General Session Welcome & Kick-Off with TPRA Captain Julie Gaiaschi Learn More DEMO: RiskRecon – Risk to the Nth-Party Degree Tuesday, April 8, 2025 10:00 - 10:50 AM Atlantic Ballroom 1 Track 1: Anchoring TPRM Essentials & Best Practices Austin Starowicz, Director, Solutions Consulting, RiskRecon Learn More Supply Chain Resilience: Enhancing Detection and Response Strategies Tuesday, April 8, 2025 10:00 - 10:50 AM Atlantic Ballroom 2 Track 2: Fortifying the Shoreline (Operational Risk & Resilience) Steve Cobb, CISO, SecurityScorecard Learn More The Next AI Wave is on its Way: Are You Ready? Tuesday, April 8, 2025 10:00 - 10:50 AM Atlantic Ballroom 3 Track 3: Surfing the Waves of Innovation & Automation Dean Alms & Loren Johnson, Aravo Learn More Essentials for Effective Third-Party Risk Management Tuesday, April 8, 2025 10:00 - 10:50 AM Tides 1 & 2 Track 4: Charting the Course (Regulation & Compliance) Jodi Daniels, CEO & Privacy Consultant, Red Clover Advisors Learn More Designing a Comprehensive TPRM Framework: Essential Elements for Success Tuesday, April 8, 2025 11:00 - 11:50 AM Atlantic Ballroom 1 Track 1: Anchoring TPRM Essentials & Best Practices Chris Phillips, VP, Procurement and Vendor Risk, Lendmark Financial Services Learn More Collective Resilience: Elevating Third-Party Risk Management Tuesday, April 8, 2025 11:00 - 11:50 AM Atlantic Ballroom 2 Track 2: Fortifying the Shoreline (Operational Risk & Resilience) Mark Orsi, CEO & Charlie Tupitza, Director of Community Development, Global Resilience Federation (GRF) | Business Resilience Council (BRC) Learn More Get Off the Assessment Treadmill. Take a Data-First, Questionnaire-Second Approach to TPRM Tuesday, April 8, 2025 11:00 - 11:50 AM Atlantic Ballroom 3 Track 3: Surfing the Waves of Innovation & Automation Ed Thomas, ProcessUnity Learn More DEMO: Black Kite Solutions for Streamlining Vendor Assessments Tuesday, April 8, 2025 11:00 - 11:50 AM Tides 1 & 2 Track 4: Charting the Course (Regulation & Compliance) Michael Gall, Solutions Leader, Black Kite Learn More Load More

Valmiki Mukherjee, Chairman, CyberFuture Foundation Empowering Tomorrow: Responsible AI Frameworks, Community Impact, and the Vision of the Cyber Future Foundation Keynote Wednesday, April 9, 2025 9:00 - 9:55 AM Atlantic Ballroom 4-8, Main Level SESSION DESCRIPTION In a rapidly evolving technological landscape, the integration of artificial intelligence (AI) into everyday operations offers unprecedented opportunities—and challenges. This keynote by the creator of Responsible and Secure AI for the Future (RSAIF.AI) framework, a visionary initiative explores how we ensure AI’s ethical and secure evolution. The session will delv… Show More SPEAKERS Valmiki Mukherjee Chairman CyberFuture Foundation Valmiki is a renowned Global CISO, Entrepreneur, and Philanthropist CEO, his remarkable journey has left an indelible mark on the global landscape of cybersecurity, and beyond, with a career spanning over two decades. Valmiki's leadership extends far beyond the boundaries of any single organization or industry. He is a visionary leader with a rare gift for orchestrating long-term global transformation programs across diverse sectors. His ability to unite stakeholders from… Show More Previous Next

Naomi Ward, Government Engagement Director, StateRAMP Overcoming Obstacles Track 3: Surfing the Waves of Innovation & Automation Wednesday, April 9, 2025 3:10 - 4:00 PM Atlantic Ballroom 3 SESSION DESCRIPTION Starting a Third Party Risk Management (TPRM) program from scratch can be a daunting task filled with unforeseen challenges. This engaging session will empower attendees with actionable insights and lessons learned from building successful TPRM programs. Explore the concept of "Failing Forward," turning setbacks into stepping stones for growth. Gain… Show More SPEAKERS Naomi Ward Government Engagement Director StateRAMP Naomi Ward serves as the Government Engagement Director for StateRamp (dba GovRAMP). In her current role, she helps governments to procure and secure more efficiently and confidently. Diverse government standards and significant data sprawl through cloud service providers, complicate today’s security environment, leaving governments less secure than ever amidst increasing cyber threats. StateRAMP lets governments trust but verify service provider products, making procurement more efficient and data more secure. Naomi's… Show More Previous Next

Commander Kirk Lippold, USN (Ret.) Leadership and Accountability When It Matters Keynote Tuesday, April 8, 2025 9:00 - 9:55 AM Atlantic Ballroom 4-8, Main Level SESSION DESCRIPTION Engaging his audience as a compelling storyteller, Commander Lippold draws upon his Pillars of Leadership to offer strategies he learned and applied to instill integrity into his team members and mitigate crises throughout his naval career. With takeaways for every organization to evaluate their own achievements and shortfalls as they… Show More SPEAKERS Commander Kirk Lippold Authority on Leadership, Global Security; Former Commander of the USS Cole, Former USNA Adjunct Professor on Leadership & Ethics USN (Ret.) Commander Kirk Lippold, USN (Ret.) was the Commanding Officer of the USS Cole when it came under a suicide terrorist attack by al Qaeda in the port of Aden, Yemen, on October 12, 2000. During his command, he and his crew distinguished themselves by saving the American war ship from sinking. This event is widely recognized as one of the most brazen acts of terrorism by al Qaeda prior to September 11,… Show More Previous Next

April 8, 2025 Breakout 1 | 10:00 - 10:50 AM SESSION DESCRIPTION SPEAKERS Previous Next

SecurityScorecard is a leading cybersecurity ratings platform that provides continuous risk monitoring, intelligence, and third-party risk management solutions to help organizations assess and improve the security posture of their vendors and supply chains. < Back SecurityScorecard Wednesday, February 12, 2025 9:30 - 9:55 AM CT Risk Ratings/Intelligence Globe Mail Search Search About SecurityScorecard SecurityScorecard is the global leader in cybersecurity ratings and continuous risk monitoring, helping organizations around the world strengthen their security posture and mitigate risk. Our platform provides a comprehensive, real-time view of the cybersecurity health of an organization and its vendors by leveraging 10 key risk factors, including IP reputation, endpoint security, and application security. With over 12 million companies continuously monitored, SecurityScorecard enables organizations to gain critical insights into their attack surface, prioritize vulnerabilities, and take proactive measures to improve their defenses. Tools, Products, and Services Our platform offers a suite of tools and services designed to simplify and enhance cybersecurity management. Security Ratings, our flagship product, delivers actionable intelligence and visibility into third-party ecosystems to reduce the likelihood of breaches and ensure compliance with industry standards. Our Third-Party Risk Management (TPRM) capabilities streamline vendor assessments, reduce questionnaire workloads by 83%, and provide continuous monitoring to mitigate supply chain risks. Additionally, MAX, our managed detection and response (MDR) service, operationalizes supply chain risk management by identifying and remediating vulnerabilities in real-time, while our professional services such as Penetration Testing and Incident Response Tabletop Exercises help validate security measures and prepare for cyber threats. Designed for seamless integration, SecurityScorecard supports over 100 marketplace integrations, enabling businesses to embed our data into existing workflows and compliance tools. Whether for enterprise cyber risk management, regulatory compliance, or board-level reporting, SecurityScorecard empowers organizations to make smarter, data-driven decisions and build a stronger, more resilient cybersecurity strategy. Presenter(s) Matt Ancelin Principal Solutions Architect Matthew Ancelin started in technology in 1983 and has been a cybersecurity professional since 2008. Currently he serves as Principal Solutions Architect for Alliances at SecurityScorecard. He held previous cybersecurity roles at both Palo Alto Networks and McAfee. Matthew is a veteran of the US Army Signal Corps, where he specialized in secure microwave communications systems. Matthew has earned the CISSP (Certified Information Systems Security Professional), Palo Alto Networks’ PCNSE… Show More Previous Next