Search Results

CONFERENCE Vendor & Third Party Risk USA Wednesday, October 14, 2026 Date & Time Wednesday, October 14, 2026 at 4:00:00 PM UTC Intended Audience All TPRM professionals Duration 2 Days CPE Credits Up to 17 credits Fee Starting at $639.20 Register Event Description In Strategic Partnership Between CeFPro and the TPRA Attending the Vendor & Third Party Risk Conference provides a valuable opportunity to explore how organizations are responding to an increasingly complex third-party risk landscape across sectors. From cloud concentration and ‘too critical to exit’ vendors to fourth- and nth-party exposure across global supply chains, the event will examine how risk leaders are strengthening operational resilience and preparing for real disruption scenarios. Show More SPEAKER(S) INFORMATION CPE CREDIT Topic Overview: A multi-streamed cross-industry agenda exploring how risk leaders are scaling TPRM programmes using AI, automation, predictive analytics, and continuous monitoring, while adapting to evolving regulatory and cybersecurity demands. STREAM 1: OPERATIONAL RISK & RESILIENCE Business Continuity Planning | Supply Chain Resilience | Crisis Management | Cybersecurity and TPRM | Risk Mitigation Strategies STREAM 2: INNOVATION & AUTOMATION Emerging Technologies in TPRM | AI-Driven Analytics | Digital Transformation in TPRM |Technology Integration Challenges STREAM 3: REGULATION & STANDARDS Financial Industry Regulations | Building Compliance Frameworks | Healthcare Compliance | Regulatory Change Management What’s included in my ticket? Access to 20+ sessions Networking opportunities Lunch + Refreshments Video recordings PPT slides/decks This event provides up to 17 CPE credits.

Learn more about OneTrust, a TPRA Partner Member, through this comprehension profile, including a bio, product functionality, contact info, and more. < Main Page < Previous Next > OneTrust TPRM Platform Partner Member CONTACT INFORMATION sales@onetrust.com Want to learn more? Watch this online demo ! OneTrust empowers you to collect, govern, and use data with complete visibility and control. We help you streamline risk management, enforce compliance, and optimize data strategies for innovation — all while meeting regulatory and customer demands. Learn more at OneTrust.com . TOP PRODUCT FUNCTIONALITY CATEGORIES Consent and Preferences Privacy Automation Third-party Management Tech Risk and Compliance Data Governance AI Governance RESOURCES FROM THIS VENDOR MEMBER Are you ready for DORA compliance? VENDOR MEMBER RESOURCE | March 18, 2025 Understanding and implementing APRA's CPS 230 Standard VENDOR MEMBER RESOURCE | March 18, 2025 Rise above risk: Third-party management in technology VENDOR MEMBER RESOURCE | March 18, 2025 Load More EVENTS FROM THIS VENDOR MEMBER NEWS & UPDATES ADDITIONAL OPPORTUNITIES Previous Next

Learn about Laura Valente, Director, Compliance, Ethics & Regulatory Affairs (& Chief Privacy Officer) for General Bank of Canada, and TPRA's WNTPRM May 2025 Leader Spotlight. < See All < Previous Next > Laura Valente Director, Compliance, Ethics & Regulatory Affairs (& Chief Privacy Officer) General Bank of Canada Biography Laura is the Director of Compliance, Ethics, and Regulatory Affairs (& Chief Privacy Officer) at General Bank of Canada. Bringing 10 years of experience across the banking and energy sectors, she has a proven track record in leading strategic initiatives, including the design and operationalization of Third-Party Risk Management and Regulatory Compliance frameworks, managing critical regulatory responses, and establishing key partnerships. Laura brings a global perspective from her experience working in the UK and Canada and studying in France, allowing her to tailor risk management to diverse business environments. Her work focuses on enhancing cross-functional collaboration, aligning risk management with business objectives, and fostering a culture of compliance and operational excellence. Laura is known for advancing risk management practices, driving change and her commitment to empowering others. In addition to her professional achievements, Laura is passionate about volunteering and mentoring individuals, guiding them in navigating their careers and building confidence. Leadership Characteristics Myers Briggs: INTJ Laura approaches leadership with a strategic and long-term outlook. She is detail-oriented, proactive, and committed to building strong partnerships. Her leadership style is rooted in fostering collaboration and trust, while maintaining high standards for quality and integrity in everything she does. Laura is passionate about enabling others to succeed, providing guidance and support to help her team members grow and develop their skills. She can adapt her leadership approach to meet the needs of individuals, demonstrating emotional intelligence and an ability to connect with her team on a personal level. Laura drives meaningful change by empowering her team to take ownership of their work, encouraging accountability, professional growth, and a culture of continuous improvement. Leadership Challenges As a traditional 2nd line of defense function, Risk Management is often viewed as a blocker to operations. Laura has faced the challenge of shifting the perception to Risk Management being a business enabler and strategic partner. This transformation is an ongoing journey and won’t happen overnight. Laura’s perseverance and resilience have been a key force in helping to build and maintain strong partnerships and demonstrate the value of proactive risk management. Operationalizing the TPRM program in the Bank provided a key opportunity to address this challenge. Laura used this initiative to collaborate with, train and guide stakeholders, ensuring they understood how Risk Management could support business objectives and strengthen strategic decisions. Key Take-a-ways The true value of a strong TPRM program extends beyond just mitigating threats - it lays the foundation for operational resilience and long-term success. A well-designed TPRM program helps businesses anticipate risks, adapt to change, and seize opportunities with confidence, knowing they have made well-informed decisions. Achieving this requires building strong relationships, educating stakeholders, and fostering a culture where risk is seen as a strategic partner in achieving business goals. When embedded effectively, TPRM becomes an integral part of decision-making processes, acknowledged early on rather than treated as an afterthought. Laura’s favourite aspect of TPRM is its dynamic, cross-functional nature, allowing her to collaborate with diverse teams across the entire organization. Fun Fact Laura grew up in Scotland before moving to Canada and has a passion for exploring new places and staying active. She loves road-tripping, hiking, kayaking and camping with her husband and their energetic Australian labradoodle puppy. And of course, with her personality type, she is always planning their next adventure!

Get to know Morgan Binder, Stripe, and a member of TPRA's Board of Directors! < Back Morgan Binder Stripe CHAIRMAN OF THE BOARD Morgan is currently part of the Third Party Risk team at Stripe and has spent the duration of her career in the risk and compliance space. Her belief in right-sized foundational governance based on benchmarks and best practices has enabled her to develop nimble enterprise, operational, and third party risk programs for financial firms. Tooling enablement has also been a major part of her experience ranging from initial selection, implementation, and ongoing administration. Morgan has a M.S. of Enterprise Risk from Boston University and a B.S. of Management from Bentley University. She is based in the greater Boston area. Next >

Learn about Verity Billson, Group Head of Third Party Risk Management for Experian, and TPRA's WNTPRM March 2026 Leader Spotlight. < See All < Previous Next > Verity Billson Group Head of Third Party Risk Management Experian Biography Verity Billson is a senior leader in Third Party Risk/Supplier Management with over 25 years of experience across financial services, retail, and manufacturing. She currently serves as Group Head of Third Party Risk Management at Experian, where she leads global oversight and strategy across UK&I, EMEA, APAC, and Brazil. Verity has a strong track record of building TPRM functions from the ground up, delivering operational resilience, and driving compliance with regulatory standards. Her career includes senior roles at Jaguar Land Rover, Boots, and Capital One, where she led supplier management strategies, contract negotiations, and risk mitigation initiatives. Verity is known for her strategic thinking, stakeholder engagement, and ability to deliver measurable results. She is also an active fundraiser for the British Heart Foundation and a recipient of the National Outsourcing Association’s Academic Achievement Award. Leadership Characteristics Influencer & Communicator Strategic Visionary & Collaborative Leader Leadership Challenges Winning hearts & minds to see TPRM as more than a tick box Key Take-a-ways It’s a field that’s constantly evolving, with new risk landscapes and emerging challenges. That pace of change is what makes it so exciting and rewarding to be part of. Fun Fact I am a grandmother to 3 wonderful grandsons, I have a black labrador (Otis) and my favorite past time is watching competitive show jumping (ideally from a warm & sunny destination!)

Learn about Heather Vahovich, Director Third Party Risk Management (TPRM) for Novanta, and TPRA's WNTPRM August 2025 Leader Spotlight. < See All < Previous Next > Heather Vahovich Director Third Party Risk Management (TPRM) Novanta Biography Heather is a strategic risk leader with 15+ years of experience who enjoys bringing order to chaos building high-impact TPRM and data governance programs for global enterprises. Transformed fragmented vendor oversight into scalable, automated frameworks that reduce risk, speed onboarding, and deliver 7-figure cost avoidance. Aligns legal, procurement, and security teams to ensure compliance with NIST, ISO, CCPA, GDPR, SOX frameworks and AI regulations. Proven track record delivering results in FinTech, MedTech, and Defense protecting enterprise value while enabling innovation. Leadership Characteristics 1. Technology Fluency 2. Strategic Agility and Vision for Risk Resilience 3. Cross-Functional Influence and Transparency Leadership Challenges 1. Balancing Visibility with Operational Demands 2. Navigating Gender Bias While Driving Strategic Influence Key Take-a-ways Heather builds world-class TPRM functions that go beyond check-the-box compliance. She reduces vendor risk, streamlines onboarding, and protects revenue—all while saving time and money. Ready to scale what works, and fix what’s broken. Fun Fact I’m a passionate advocate for both elder care and Cane Corso dog rescue, committed to raising awareness and promoting education to help prevent abuse and neglect in these vulnerable communities. Outside of work, I find joy in training and running agility courses with my Corso mix combining purpose with play in a way that reflects my deep commitment to compassion, resilience, and connection.

Learn about TPRA's current certifications, specifically designed for third party risk professionals! Earn the Gold Standard in Third Party Risk Management (TPRM) Certification The Third Party Risk Association (TPRA) is proud to offer a professional certification program tailored specifically for third party risk management (TPRM) professionals. This comprehensive certification is designed to validate your expertise, enhance your professional credibility, and position you as a leader in the evolving field of TPRM. Why Get Certified by TPRA? 1. Industry Recognition TPRA’s certification is recognized as a mark of excellence in TPRM. By earning this credential, you demonstrate your advanced knowledge, practical skills, and commitment to upholding best practices in managing third party risks. 2. Career Advancement Certification opens doors to new career opportunities, promotions, and increased earning potential. Employers value certified professionals for their ability to mitigate risks effectively and safeguard organizational resilience. 3. Comprehensive Learning Our certification program encompasses all critical aspects of TPRM, including risk assessment, regulatory compliance, vendor lifecycle management, and emerging risks. You’ll gain actionable insights to tackle real-world challenges with confidence. 4. Networking Opportunities Joining the ranks of TPRA-certified professionals connects you to a growing community of TPRM leaders. Engage in exclusive forums, industry events, and peer discussions that enrich your professional journey. 5. Staying Ahead of the Curve As third party risk landscapes evolve, TPRA certification ensures you stay updated with cutting-edge practices and emerging trends, maintaining your relevance in the field. Who Should Pursue Certification? Third party risk practitioners seeking to validate their expertise Risk management professionals aiming to specialize in TPRM Compliance, procurement, and information security specialists Managers and leaders overseeing vendor and supply chain risks How to Get Certified Prepare: Enroll in TPRA’s tailored preparation courses and access study resources designed to help you master the certification material. Qualify: Meet eligibility requirements based on professional experience and education. Examination: Pass the comprehensive TPRA Certification Exam to showcase your mastery of TPRM principles and practices. Maintain: Keep your certification current by participating in continuing education opportunities and staying engaged with TPRA activities. Benefits Beyond Certification By earning TPRA certification, you not only strengthen your personal expertise but also contribute to raising the standards of the TPRM profession. Certified professionals are equipped to create safer, more resilient organizations in an interconnected world. Take the Next Step Elevate your career and join the ranks of the most trusted TPRM professionals in the industry. Explore TPRA’s certification program today and start your journey toward excellence in third party risk management! Certifications We Offer More Coming Soon! Launched 2022 Third Party Cyber Risk Assessor (TPCRA) Certification Learn More Launch 2026 Third Party Risk Management Practitioner (TPRMP) Certification Learn More In order to maintain their certification status, earners must do the following on an annual basis: Submit evidence of 20 hours of Continuing Professional Education (CPE) per year. CPEs do not have to come from TPRA, and can be provided by other organizations, so long as the topic aligns with your certification area of expertise. Submit payment ($100 for Standard, Vendor, and Non-members OR $85 for Premium Members) to renew their certification.

LIVE WEBINAR New & Potential Member Call Tuesday, October 20, 2026 Date & Time Tuesday, October 20, 2026 at 3:00:00 PM UTC Intended Audience Those interested in or who have recently joined TPRA as a Practitioner Member Duration 30 min CPE Credits 0 Fee Free Register Event Description New & Potential TPRA Practitioner Members can join these calls to learn more about TPRA benefits, upcoming TPRA events, and where to get plugged in. Share this event with peers who might be interested in joining TPRA! SPEAKER(S) INFORMATION CPE CREDIT FACILITATED BY Julie Gaiaschi CEO & Co-Founder | Third Party Risk Association (TPRA) Julie Gaiaschi, CISA, CISM, is the CEO & Co-Founder of the Third Party Risk Association (TPRA). She has over 15 years of technology and information security risk experience, with the last 10 years specializing in third party risk identification and mitigation techniques. In her role as CEO, she provides strategic direction for the non-profit, whose mission it is to further the third party risk profession through knowledge sharing and networking. She also has a passion for helping others enhance their own third party risk management programs. In 2021, Julie was awarded " CEO of the Year " by Women in Governance, Risk, and Compliance. Prior to co-founding the TPRA, Julie consulted on third party risk for a large bank. She also developed and led a large health payer organization’s Third Party Security program. There, she established and executed the third party risk assessment process, which included integration into the Procurement process. Prior to her role as the leader over Third Party Security, Julie was a Senior IT Auditor. Julie resides in Iowa with her husband and two girls. She enjoys traveling and cooking. Who Should Attend New TPRA Practitioner Members or those who are interested in joining TPRA and would like more information. Cancellations In the event that this session would need to be canceled, you will be contacted and invited to register for the rescheduled event. Questions & Concerns For more information regarding administrative policies such as complaints, please contact us at info@tprassociation.org . No CPE credits are provided for this event type.

Explore TPRA’s TPRM Consultant Membership plans designed for independent consultants and boutique firms offering third party risk advisory services. Consultant Catalyst Plans Target Audience: Single, Independent Consultants or Boutique Advisory Firms specializing in third party risk management services, including but not limited to TPRM program implementation, tool implementation, and/or staff augmentation. INQUIRE ABOUT MEMBERSHIP About This Membership Plan The Consultant Catalyst Plan is a tailored membership option designed specifically for independent consultants and boutique advisory firms that specialize in third party risk management. Recognizing that these high-expertise professionals often operate with limited marketing resources, TPRA has created an accessible, affordable pathway into its practitioner-driven ecosystem. Through this membership, consultants gain the opportunity to build visibility, credibility, and relevance in a highly targeted community of TPRM professionals. This plan provides structured, ethical exposure to the TPRA network, including guidance on lead generation strategies that respect practitioner boundaries while helping consultants showcase their expertise. Members are encouraged to engage directly in community discussions, contribute thought leadership, and demonstrate their unique value through active participation. While TPRA does not guarantee leads, the Consultant Catalyst Plan creates the foundation for long-term relationship-building, increased brand recognition, and a stronger position in the TPRM space. Key Objectives 1 Provide affordable entry to the TPRA ecosystem. 2 Offer guided lead generation strategies (without violating practitioner privacy). 3 Enable visibility and credibility for consultants. 4 Encourage active participation to demonstrate value. INQUIRE ABOUT MEMBERSHIP Key Benefits Explore a brief overview of the benefits included in our Consultant Catalyst Plan. Exclusive Access to Practitioner-Focused Events Gain invitations to all TPRA Practitioner meetings, including Industry Roundtables and Insight Work Groups. Participate as a panelist or presenter once a year and engage in collaborative development of TPRA tools and guidance—all in a no-solicitation environment that fosters trust and expertise. Lead Generation & Networking Tools Participate in bi-annual Consultant Connector Events with interested practitioners. Plus, use the TPRA's “Lead Generation Blueprint” Toolkit to guide compliant, value-driven outreach based on best practices. Strategic Visibility & Promotion Opportunities Showcase your expertise through a curated TPRA Consultant Directory Profile, a LinkedIn spotlight post, Consultant Corner blogs, and the opportunity to be featured in TPRA’s quarterly newsletter. Position your firm as a recognized thought leader within the third party risk community. Business Growth & Peer Exchange Forums Join quarterly Consultant Roundtables—exclusive, TPRA-moderated sessions where you’ll share challenges, trends, and business growth strategies with fellow consulting peers in a supportive and strategic environment. Co-Hosted Event Collaboration TPRA will partner with your organization to co-host webinars, LinkedIn Live sessions, and/or podcasts. Leverage TPRA’s promotion while leading discussions that highlight your niche knowledge and solutions in front of a relevant and engaged audience. Recognition, Resources & Professional Development Apply for the TPRM Innovator Award, access discounts on certifications for consultant teams, and post jobs on TPRA’s career board. Contribute educational content, share surveys, and participate in our Women in TPRM Program. Inquire About Membership Heather Kadavy Senior Membership Success Coordinator heather.kadavy@tprassociation.org Follow on LinkedIn > TPRM Service Provider Membership Inquiry Complete this form if you are interested in one of TPRA's Service Provider Membership options (Vendor Membership, Incubator Program, Consultant Catalyst). Our team will reach out to you as soon as possible with further details on plan benefits and pricing. First name* Last name* Job Title* Organization* Email* Phone Which membership option are you interested in? Vendor Membership – For established TPRM Service Provider organizations (TPRM Platform, GRC Platform, Risk Rating/Intelligence Tool, TPRM Services, etc.). Incubator Program – For Start-Up TPRM Service Provider Organizations looking to gain insight, support, and promotion. Consultant Catalyst – For single, Independent Consultants or Boutique Advisory Firms specializing in third-party risk management services. Other Anything else we should know? Submit

FOR IMMEDIATE RELEASE Interos and Aravo Awarded 2025 Excellence Awards by Third Party Risk Association Monday, March 24, 2025 1/1 Interos and Aravo Named Third Party Risk Association's (TPRA) 2025 Excellence Award Winners in the Categories of Risk Rating/Risk Intelligence and TPRM Platform ANKENY, IOWA — MARCH 24, 2025 — Last week, the Third Party Risk Association (TPRA) announced their 2025 winners for the Excellence Awards, a sub-category of their Third Party Risk Management (TPRM) Service Provider Innovator Award. “These organizations are constantly pushing boundaries, developing forward-thinking solutions, and streamlining risk management processes,” said Julie Gaiaschi, CEO and Co-founder of TPRA, during the award announcement speech. “They also empower practitioners to think smarter, react faster, and provide efficiencies in assessing, mitigating, and monitoring third party risk.” To celebrate TPRM service providers’ relentless dedication and industry-transforming contributions, TPRA established the Innovator Award in 2022, creating the new Excellence Award sub-categories in 2025. TPRA had a total of 30 nominations for the award this year in the categories of GRC/TPRM Platform, Risk Ratings/Intelligence Tools, and TPRM Services. Seven organizations were chosen as finalists, with two organizations, Aravo and Interos , named as Excellence Award winners in their respective tool categories. Aravo , the TPRM Platform Excellence Award winner, uses their AI engine to collaborate with multiple risk intelligence partners to enable customers to access authorized information as their primary information and assessment vehicle. This “Intelligence First” approach shifts risk assessments away from questionnaires towards real-time intelligence integrations, focusing on actual evidence and reports obtained and comparing it to control frameworks. The Excellence Award winner for Risk Rating/Intelligence, Interos , is redefining supplier resilience through AI-powered, real-time visibility. Their platform allows you to anticipate disruptions, ensuring programs move from reactive to proactive and predictive. For example, they allow you to see the impact of tariffs on global trade and your supply chain. To learn more about this program and its winners, visit https://www.tprassociation.org/innovator-award . ### The Third Party Risk Association was created out of a necessity to build a community of like-minded third party risk professionals to allow for the sharing of best practices, exchanging of ideas, and influencing of an industry. This organization is a 501(c)(6) not-for-profit. MEDIA CONTACT Meghan Schrader Meghan.schrader@tprassociation.org www.tprassociation.org FOR MORE INFORMATION https://www.tprassociation.org/innovator-award Previous Next

Learn more about Aprovall, a TPRA Advocate, through this comprehension profile, including a bio, product functionality, contact info, and more. < Main Page < Previous Next > Aprovall TPRM Platform Advocate CONTACT INFORMATION https://www.aprovall.com/en/book-a-demo/ Aprovall is a European TPRM platform that centralizes third-party governance, risk, and compliance (TPGRC) across the full third-party lifecycle. From evaluation and onboarding to ongoing monitoring and offboarding, Aprovall gives procurement, compliance, legal, and risk teams a single system of record for managing third-party relationships. Trusted by 1,800+ public sector organizations and leading private companies across Europe. Recognized by Gartner in the 2025 Market Guide for Third-Party Management Technology. Organizations using Aprovall reduce administrative time by 25%, save 9 days monthly on third-party processing, and improve supplier response rates by 30%. Show More TOP PRODUCT FUNCTIONALITY CATEGORIES Centralized Third-Party Database (Single System of Record) Third-Party Onboarding & Lifecycle Management Risk Assessment & Tiering Compliance & Regulatory Requirement Tracking Cross-Functional Workflow Automation Supplier Portal & Self-Service Continuous Monitoring & Risk Intelligence Audit Trail & Reporting Document Collection & Management ESG & CSR Due Diligence RESOURCES FROM THIS VENDOR MEMBER TPRM Organizational Silos: How to Break Down Barriers VENDOR MEMBER RESOURCE | March 6, 2026 Load More EVENTS FROM THIS VENDOR MEMBER NEWS & UPDATES ADDITIONAL OPPORTUNITIES Previous Next

Learn about Christine Kitamura, Senior Content Manager, Education and Advocacy (former) for Venminder (former), and TPRA's WNTPRM February 2025 Leader Spotlight. < See All < Previous Next > Christine Kitamura Senior Content Manager, Education and Advocacy (former) Venminder (former) Biography Christine previously served as the Senior Content Manager, Education and Advocacy at Venminder. In this role, she supported the marketing team by creating thought leadership content pieces that educated business leaders on third-party risk management best practices and regulatory expectations. Christine’s professional background began in marketing, where she discovered her passion for building and executing creative strategies that helped businesses grow. Her marketing skills eventually led her to a Content Specialist position at Venminder, where she was introduced to the complex business practice of third-party risk management. Her research and knowledge of third-party risk management helped build a wide range of content pieces across different formats including eBooks, infographics, checklists, podcasts, and webinars. Leadership Characteristics I’ve been incredibly fortunate to work under outstanding leaders throughout my career. Although I have not yet managed a team professionally, I have a clear picture of the leadership characteristics that I will strive to deliver. Open communication, transparency, and continuous growth are just some of the characteristics that my former managers have shown in our working relationships. I also believe that a great leader will step in to perform the necessary tasks to complete a job. I’ve never worked with a great leader that had the attitude of “that’s not my job”. Leadership Challenges As an introvert and chronic people-pleaser, I can predict a few key challenges that I would face in a leadership role. First, it would be difficult to delegate tasks because of my desire to minimize everyone’s workload. I’m typically a person who’s willing to carry the burden as long as others are satisfied, but I also realize the importance of collaboration and accepting help when needed. I’ve also been challenged in my ability to communicate a sense of urgency to stakeholders if certain tasks are falling behind schedule. I sometimes worry about overstepping boundaries, but I’ve found that others are always receptive to my requests when they’re clearly communicated. Key Take-a-ways When I first joined Venminder, third-party risk management was a foreign concept. I researched several different regulations and guidelines, many of which contained very complex language. However, I came to realize that many TPRM principles are built on simple practices and common sense. For instance, vendor due diligence involves a lot of moving pieces but the overall objective is to ensure that your organization is partnering with a legitimate third party that won’t harm your organization. Taking a step back from all the intricacies of TPRM and defining the ultimate goal can often bring clarity to these processes. Fun Fact I’m a southern California native, but I lived in Rochester, NY for one year through its inaugural Greater ROC Remote program. I’m grateful for the experience and enjoyed living in a place with four seasons, but I’m so happy to be back home in California!