top of page

Search Results

386 results found with an empty search

  • TPCRA On-Demand Training Only

    TRAINING TPCRA On-Demand Training Only Date & Time Intended Audience Duration 12 hrs CPE Credits 12 Fee Starting at $340 Register Event Description SPEAKER(S) INFORMATION CPE CREDIT

  • SaaS Certificate Training

    TRAINING SaaS Certificate Training Friday, April 10, 2026 Date & Time Friday, April 10, 2026 at 5:00:00 PM UTC Intended Audience Duration 4 hrs CPE Credits 4 Fee $159 Register Event Description As organizations increasingly rely on cloud-based Software-as-a-Service (SaaS) solutions, understanding and mitigating associated risks is critical. This virtual training provides an in-depth exploration of key security considerations when evaluating and managing SaaS applications. The course begins with an overview of cloud and SaaS risks, highlighting the unique challenges posed by cloud-based environments. Participants will gain insights into the Shared Responsibility Model , clarifying the division of security responsibilities between cloud providers and customers. The session then delves into security frameworks for major cloud platforms, including Amazon Web Services (AWS) Trust Advisor Reports (TAR), Google Cloud Security, and Microsoft Azure Cloud Security , helping learners assess provider-specific security features. Show More SPEAKER(S) INFORMATION CPE CREDIT COURSE INSTRUCTOR Gregory Rasner Chief Executive Officer Third Party Threat Hunting Gregory is a CEO, author, educator, speaker, and leader in cybersecurity, AI, zero trust, and third-party risk. With over 25 years of experience in IT and cybersecurity, he has assisted numerous clients and organizations in improving their security posture and reducing risk exposure. Currently, he is engaged with some clients, training their AI Agents to process and analyze data as a human risk professional would do, and ensure intended outcomes with AI implementations. Gregory is also the author of four books published: His latest book, "AI & Third-Party Risk: Stragegies for Success with your AI-enabled Vendors and Partners" is due out in Jan 2026. “Cybersecurity & Third-Party Risk: Third-Party Threat Hunting” (2021) and “Zero Trust and Third-Party Risk: Reduce the Blast Radius” (2023). He has a third book out, co-authored with his wife, Maria Rasner, titled “Privileged Access Management: A Guide to Zero Trust in the Enterprise.” He is the content creator of the training and certification program “Third-Party Cyber Risk Assessor” with the Third Party Risk Association (TPRA). Recently, he launched a 4-hour certificate course with TPRA called “Securing SaaS Applications.” He has won several awards and honors for his innovation and leadership, such as the CSO40 Award and the Security Professional of the Year finalist. He is a frequent keynote speaker, panelist, blogger, podcaster, and online article writer on cybersecurity and risk management topics. He was the SVP and leader for cyber third-party risk at Truist Financial Corp, where he led a team of 20+ cyber professionals and managed the enterprise risk posed by vendors. He holds a BA from Claremont McKenna College, a master's certificate in project management from Villanova University, and multiple certifications in IT, cybersecurity, and project management. He is passionate about cybersecurity and enjoys traveling internationally with his family. Gregory's certifications: CISSP, CCNA, CIPM, ITIL The Third Party Risk Management (TPRM) Certificate Program , offered by TPRA in collaboration with our trusted partners, provides comprehensive training designed to enhance knowledge and expertise in TPRM best practices. This program features a diverse selection of courses covering critical topics in third-party risk, cloud security, AI/LLM security and risk. Participants can choose from both free and paid courses, ranging in duration from one to four hours, allowing for flexible learning tailored to individual needs and schedules. Participants will receive a certificate upon completion of the training course. Please note that this is not a certification program, nor will participants receive any professional credentials. Whether professionals are new to TPRM or looking to deepen their expertise, the program provides valuable insights and practical knowledge to strengthen risk management strategies within their organizations. Attendees will earn four (4) CPE credits upon completion of this course.

  • Safe Security | TPRM Tool Virtual Demo

    Safe Security has redefined cyber risk measurement and management with its real-time, data-driven approach that empowers enterprise leaders, regulators, and cyber insurance carriers to understand cyber risk in an aggregated yet granular manner. < Back Safe Security Wednesday, August 19, 2026 9:30 – 9:55 AM CT TPRM Platform Globe Mail Search Search Search SAFE TPRM is the industry’s only AI-powered third-party risk management solution designed to address the growing challenges of managing third-party risks. It provides businesses with advanced capabilities, including outside-in security ratings, questionnaire-based assessments, zero-trust principles, and inside-out scans. Through SAFE One’s unified platform, enterprises can achieve a holistic and dynamic understanding of their supply chain risk posture. This platform delivers actionable, dollar-driven insights that help organizations prioritize and mitigate risks effectively while scaling their TPRM programs seamlessly. Presenter(s) Ram Vemula Head of Partnerships Product Management leader with extensive experience in delivering strong business growth through disruptive product innovations, innovative go-to-market strategies and building strong ecosystem partnerships. Ram Vemula is currently leading product development of Third-Party Risk Management capabilities and establishing technology partnerships with various partners in the risk management and cybersecurity domains. Experienced across all aspects of product management and business development: market-driven requirements and competitive analysis with focus on commercial structure, pre-sales,… Show More Previous Next

  • Certa | TPRM Tool Virtual Demo

    Certa’s Third Party OS is the digital backbone for managing your third party relationships across all risk domains and lifecycle stages. < Back Certa Wednesday, August 19, 2026 9:00 – 9:25 AM CT TPRM Platform Globe Mail Search Search Search Certa is the leading Third Party Risk Management (TPRM) solution. With our comprehensive Third Party Operating System (Third Party OS), Certa lets you manage risk across all third party types, all risk domains, all in one OS. Certa leverages AI across the third party lifecycle—automating onboarding, risk analysis, compliance, and monitoring. Our no-code workflows, AI-driven decisioning, and real-time data integrations help you adapt to evolving regulations and business needs. With full-spectrum risk coverage, Certa delivers due diligence 80% faster, driving smarter and more efficient third party management for global enterprises. Certa leverages AI across the third party lifecycle—automating onboarding, risk analysis, compliance, and monitoring. With Certa, enterprises can manage risk across all third party types, all risk domains, all in one OS. Presenter(s) Hassan Lakhani Solutions Consultant Hassan has been in the software space for nearly a decade, working across multiple industries. He has led and contributed to various projects spanning diverse sectors. Brian Shaw VP, Head of North America Brian has automated risk and compliance for over 25 years, supporting hundreds of Fortune 500 and mid-market firms across all industries. Since 2011, Brian has focused on Third-Party Risk, Compliance and Performance Management, Master Data Management and Know your Customer (KYC) At Certa, Brian serves as Vice President, Head of North America. Previous Next

  • Bitsight | TPRM Tool Virtual Demo

    Bitsight Third Party Risk Management is an end-to-end solution that includes continuous, data-driven, validated cyber risk insights and automated vendor assessment capabilities. < Back Bitsight Wednesday, August 19, 2026 11:30 – 11:55 AM CT TPRM Platform Globe Mail Search Search Search Bitsight Third Party Risk Management is an end-to-end solution that includes continuous, data-driven, validated cyber risk insights and automated vendor assessment capabilities. It delivers real-time monitoring, risk prioritization, actionable remediation, and workflow automation—helping organizations proactively manage the entire third-party lifecycle in one place with trusted, independently validated security analytics and proven cyber risk intelligence on top of a robust network of vendor engagement. Presenter(s) Evan Tegethoff VP of Solutions Engineering Evan Tegethoff is an information security professional currently serving as the Vice President of Solutions Engineering at BitSight. With over 23 years of experience in the cybersecurity industry, Evan helps organizations holistically consider cybersecurity, data protection, technology, and business risk as a unified concept. Prior to BitSight, Evan developed third-party risk programs for numerous large organizations, through his work with Optiv, Accuvant, and Forsythe Technologies. Additionally, he has led consulting… Show More Previous Next

  • ProcessUnity | TPRM Tool Virtual Demo

    ProcessUnity Third-Party Risk Management protects companies and their brands by reducing risk from third parties, vendors and suppliers. < Back ProcessUnity Wednesday, August 19, 2026 10:30 – 10:55 AM CT TPRM Platform Globe Mail Search Search Search ProcessUnity Third-Party Risk Management protects companies and their brands by reducing risk from third parties, vendors and suppliers. TPRM expands the scope of risk management to encompass any external party that could pose a risk to an organization, including vendors, contractors, partners and suppliers. With a single, configurable platform, ProcessUnity helps organizations manage the increasing complexity of supply chains and third-party relationships with tools to identify and assess the risks associated with each external party, monitor third-party performance and ensure external control effectiveness. Our software platform empowers you to proactively manage third-party risks and protect your organization from potential cyber threats and business disruptions. ProcessUnity is used by the world’s leading financial service firms and commercial enterprises. The company is headquartered outside Boston, Massachusetts. For more information, visit http://www.processunity.com . Presenter(s) Previous Next

  • Supply Wisdom | TPRM Tool Virtual Demo

    Supply Wisdom provides real-time, continuous risk intelligence across third parties and locations to help enterprises proactively manage operational, compliance, financial, cyber, location, ESG and Nth party risks. < Back Supply Wisdom Wednesday, August 19, 2026 11:00 – 11:25 AM CT Risk Ratings/Intelligence Globe Mail Search Search Search Supply Wisdom offers an AI-enabled risk intelligence platform that delivers continuous, real-time monitoring of third-party and location-based risks across a comprehensive set of risk domains, including financial, operational, ESG, cyber, compliance, location, and Nth party risk. Unlike traditional assessments or point-in-time audits, Supply Wisdom provides real-time alerts and risk insights to empower risk, procurement, and compliance teams with the foresight needed to act before disruptions occur. One of our most critical differentiators is our location risk intelligence capability, which gives organizations early-warning signals and insights into the health, safety, and stability of key business locations, ranging from supplier sites to service delivery hubs. With Supply Wisdom, clients gain 24/7 visibility into everything from regulatory changes and labor unrest to infrastructure issues, climate events, and emerging threats in specific geographies. Our platform seamlessly integrates with existing workflows and risk management tools, offering flexible delivery options such as dashboards, API feeds, and email alerts. By enabling proactive risk mitigation at both the third-party and location level, Supply Wisdom helps enterprises build more resilient supply chains and ensure business continuity at scale. Presenter(s) Aidan Thaggard Senior Solutions Engineer Aidan Thaggard graduated from Georgetown University and began his career in Risk with Fannie Mae’s Risk and Controls department, then transitioned to Iron Mountain’s Third-Party Risk Management team as a Risk Analyst, helping to mature the company’s ever-complex risk program. In 2022, Aidan joined the Supply Wisdom team. Since 2023, he has served as Senior Solutions Engineer, providing existing and prospective clients with essential technical and strategic support throughout thei… Show More Previous Next

  • Portend.ai | TPRM Tool Virtual Demo

    Portend AI is a continuous Third-Party Risk Intelligence platform that replaces static vendor assessments with real-time, independent risk monitoring. < Back Portend.ai Wednesday, August 19, 2026 3:30 – 3:55 PM CT TPRM Platform Globe Mail Search Search Search Portend AI is a continuous Third-Party Risk Intelligence platform that replaces static vendor assessments with real-time, independent risk monitoring. Built for TPRM, procurement, compliance, and audit teams, Portend AI delivers ongoing visibility into vendor cybersecurity posture, compliance exposure, financial and operational risk, reputational signals, sanctions status, and emerging external threats. By aggregating and scoring intelligence from thousands of public, regulatory, commercial, and proprietary data sources, Portend AI helps organizations detect vendor risk between review cycles, reduce reliance on self-reported questionnaires, and focus resources on the vendors that present the greatest exposure. The result: stronger third-party oversight, earlier risk detection, and materially reduced operational surprises. Presenter(s) Previous Next

  • Women Lead | Franchesca Williams

    Learn about Franchesca Williams, SVP, Director of Third Party Risk Management for Ameris Bank, and TPRA's WNTPRM July 2023 Leader Spotlight. < See All < Previous Next > Franchesca Williams SVP, Director of Third Party Risk Management Ameris Bank Biography Franchesca Williams is the SVP, Director of Third Party Risk Management at Ameris Bank and has 13+ years in the third party risk management field in financial services. Prior to her role at Ameris, Franchesca served as the Vice President of Third Party Risk Management at VyStar Credit Union in Jacksonville, FL. Franchesca is a detail oriented, analytical, and organized professional with an ability to adapt to change quickly, learn new concepts at a fast pace, and an ability to create solutions and overcome challenges presented. She currently holds the Certified Regulatory Vendor Program Manager IV (CRVPM IV) certification, Certified Third Party Risk Professional (CTPRP) certification, and a CCM Advanced Practitioner (CCMAP) certification. Leadership Characteristics Franchesca is always up for a challenge and completing work with accuracy. She focuses on taking the time to coach and mentor her team and colleagues in risk to help them be successful in managing identified risk within the organization. Leadership Challenges Franchesca has learned to be more flexible in her career as risk is about being in the gray at times and making a judgment call. She was not always flexible on her decisions or path in the past, but was blessed to have some great leaders and mentors that helped her see this as a strength and to open her mind to growing in this area. She has since grown to see the possibilities and paths forward as a result. This has led to her growth as a leader and helped her to succeed to further career growth. Key Take-a-ways Franchesca truly enjoys third party risk management because each day brings a new challenge to find a solution and to help identify ways to reduce or mitigate the risk that has been identified. “If one way does not work, forge forward and be open to creating a new way of doing things to accomplish your goals.” Fun Fact Franchesca enjoys spending time with her husband, 7-year-old son, and two Boston terriers in her free time. Some of her hobbies include crafting, gardening, cooking, and interior decorating/organizing. She is an advocate for Asian communities and culture in Jacksonville, FL where she serves on the Mayor's Asian American Advisory Board.

  • Women Lead | Jennifer Wilkinson

    Learn about Jennifer Wilkinson, Vice President TPRM for Cenlar FSB, and TPRA's WNTPRM November 2024 Leader Spotlight. < See All < Previous Next > Jennifer Wilkinson Vice President TPRM Cenlar FSB Biography I have spent 29 years in the mortgage industry, my first job out of college was working in the Appraisal Management department for PHH Mortgage where I worked my way through a variety of roles in Vendor Management, Loan Operations and Processing, Strategic Sourcing and Provider Governance, Vendor Relations and Strategic Planning working primarily with their Servicing teams where we focused on building a robust and regulatory compliant TPRM program. I came to Cenlar 9 years ago in September where I got to build a TPRM from scratch working with the Chief Risk Officer, Chief Compliance Officer, Chief Technology Officer, Office of the CISO and a bevy of some of the best Subject Matter Experts in the business. I am proud to be working for Cenlar, the largest mortgage sub-servicer in the U.S. running their TPRM function. I am an active member of the ABA’s TPRM roundtable and this past June I was invited to speak on a panel at their 2024 National Risk and Compliance Conference in Seattle. In July I was named an Elite Woman by Mortgage Professional America. This award celebrates women who are considered top performers and role models across the mortgage industry. I am a self-proclaimed TPRM nerd and proud to be a diversity ambassador with Cenlar’s DEI group. I love what I do and enjoy sharing best practices with those interested in and just starting out in TPRM! Leadership Characteristics Accountability Counts, clear goals and objectives. Listen and extend flexibility where you can while being fair to the team. Have some fun doing what you do. Risk is such a serious and important arm of the organization, you have to laugh where you can. Build positive relationships with others and always be open to collaboration-- the best organizations thrive when people work together for the common good of the organization as opposed to their department. Leadership Challenges My degree is in Communications- my experience is in TPRM. I kind of evolved into this genre of risk because I was really good at talking to people and asking questions in a way that while considered credible challenge at times, didn't come off as adversarial. I have worked with great leaders who have taught me a lot, I have also worked with not so great leaders who have taught me ways I can be a better leader to my team and made me work hard to ensure that I am able to articulate the risks of not having a robust TPRM in a regulated institution. Key Take-a-ways Build Positive Relationships- Being friendly, dependable and responsive counts- in TPRM it is important to build positive relationships with the business leaders within your organization. The same goes for your team. Verify! Verify! Verify!- In TPRM, Trust but Verify. Documentation/evidence counts! Add Value- Make sure you have a good WIIFM speech for those who resist TPRM. Everyone needs to be a risk manager! Stay In Tune- Stay on top of industry best practices and regulatory changes to ensure your risks aren’t being increased by third party relationships Question the unfamiliar- Ask questions when you need to. TPRM is a genre that requires continuous learning. You will not be able to grow your program to meet the needs of your organization if you don’t understand where risks lie. Be Prepared for the bad stuff to happen- Anticipate that bad things can happen and work to ensure you have the appropriate stakeholders in the organization to drive how the organization will respond to them. There is no I in team- I am not successful as a stand-alone entity. I have built an incredible team who makes me proud of the work that the TPRM does for my organization. The program is not successful because of my efforts alone. A rule of thumb- Make Sure your program is auditable, transparent and repeatable. It will help immensely with regulatory audits. Fun Fact I love to cook- and with my Eastern European background, I make a mean homemade Pierogi.

  • Women Lead | Olga Baldwin

    Learn about Olga Baldwin, VP, Vendor Management for Axiom Bank, and TPRA's WNTPRM December 2022 Leader Spotlight. < See All < Previous Next > Olga Baldwin VP, Vendor Management Axiom Bank Biography Olga started working in third party risk management in 2008 in a private company. She has worked in several industries such as banking, insurance, and airline. She specializes in building TPRM programs, developing policies, procedures, change management, system implementation and remediation of TPRM program deficiencies. Leadership Characteristics Olga is very analytical and a fast learner. She is able to analyze a program, identifying any areas for improvement by utilizing her knowledge and lessons learned from previous TPRM programs. She enjoys her work and always ensures her teams are well trained and positioned for success. Leadership Challenges The biggest challenge for Olga is perfection. She sometimes spends extra time to ensure the reports and presentations look flawless. Even through it is important but not always possible. She always thrives for success and looks for opportunities for improvement and efficiencies in processes. Key Take-a-ways Olga enjoys Third Party Risk Manageement. It is important to remember that even though TPRM is a regulatory requirement, it's primary goal is to define the risk exposure and ensure management is aware what level of risk the organization is operating with to make decisions in line with the organization risk appetite. Fun Fact Olga loves traveling with her family. They recently moved to another state and have been busy exploring a new area during the weekends and holidays.

  • Women Lead | Madelyn Norwood

    Learn about Madelyn Norwood, Solution Advisor for Ncontracts, and TPRA's WNTPRM April 2025 Leader Spotlight. < See All < Previous Next > Madelyn Norwood Solution Advisor Ncontracts Biography Madelyn previously served as the Manager of Customer Success at Venminder, Inc. and has recently transitioned to Solutions Advisor through the acquisition of Venminder by Ncontracts. She was one of the first Senior Customer Success Managers at Venminder and transitioned to managing the team in 2021. In both roles, her responsibilities include cultivating long-lasting relationships, advising on best practices for Third Party Risk Management (TPRM) to Venminder’s diverse customer base, collaborating with Product and Development to enhance our SaaS solution, and integrating customers’ complex processes into their software. Madelyn joined Venminder in early 2019 and quickly developed an interest in third party risk and vendor management. She is a Certified Third-Party Risk Professional (CTPRP) and Certified Vendor Management Professional (NCVMP) with plans to continue her professional education. Leadership Characteristics What I value most in leaders are transparency, accountability, and empathy. I strive to demonstrate these qualities because they align with my own expectations for leadership. The bar is set high for me, especially with the fearless leadership I’ve experienced at both Venminder and Ncontracts. One of the most rewarding aspects of being a leader is identifying positive solutions for the team and our customers. I love problem-solving and having a new challenge thrown at me. I'm a "just figure it out" kind of gal. It’s important to listen to understand rather than just to respond and to recognize that your way may not always be the best way. This fosters a culture of empowerment within the team and helps everybody grow personally and professionally. Additionally, I believe in getting involved and working alongside your team. I never want to become so focused on management that I forget the importance of being a good teammate. We’re all striving toward a common goal. Leadership Challenges A challenge I faced as a leader was navigating and understanding the complexities of Third-Party Risk Management (TPRM) beyond the financial services sector, especially as its influence expanded into various other industries. These verticals do not necessarily operate their programs the same as Traditional FI's and come with their own set of rewarding challenges. It taught me to be adaptable in my approach with customers allowing me to better understand their needs. Key Take-a-ways There is always room for growth in the world of TPRM. It is what you make of it, and there are so many opportunities to be had. Whether it is honing your overall skills and broader knowledge of TPRM or picking one piece of it that interests you most, there is something for everybody. Fun Fact My favorite place is at the beach with my husband and kids with not a single plan in sight. I’m the best aunt in the entire world. I'm an avid University of Louisville Cardinal fan. Go CARDS! I love a well-made margarita and tacos… especially by the beach.

bottom of page