Search Results

LIVE WEBINAR Women In TPRM Meeting Tuesday, April 28, 2026 Date & Time Tuesday, April 28, 2026 at 6:00:00 PM UTC Intended Audience All TPRM Professionals Duration 1 hr CPE Credits 0 Fee Free Register Event Description Join us for this empowering Women In TPRM (WnTPRM) Meeting . Discover the key to success in third-party risk management and be part of an inspiring virtual gathering. Embrace this opportunity to connect with influential women in the field, share insights, and build lasting connections. Journey to TPRM: Dr. Angela Dogan Show More SPEAKER(S) INFORMATION CPE CREDIT JOURNEY TO TPRM PRESENTER Dr Angela Dogan Associate Director, Security & Resiliency Kyndryl Dr. Angela obtained her Doctor of Information Technology specialized in Information Assurance and Cybersecurity in 2022. However, she has spent the past 20+ years in the field of Cybersecurity Risk Management beginning in Third Party Risk Management to where she currently is which is assisting organizations build, maintain, and mature their Cybersecurity Governance, Risk, and Compliance programs at Kyndryl. Her expertise spans across industries such as Financial Services, Healthcare, and Retail. She’s driven by her ability to strategize with organizations to determine a customized approach to the regulatory and compliance needs of the organization. Coupled with her passion for leading and growing teams that can effectively maintain Cybersecurity risk management programs aligned with NIST 800-53, ISO 27001/2, SOX, ITGC, and/or PCI. Angela is a demonstrated leader and expert in the industry as she has written content for several Risk Management Control Frameworks such as the Cloud Security Alliance’s Cloud Controls Matrix, The Shared Assessments Program SIG, SCA, and VRMMM. Angela also has a passion for Public Speaking and has led many webinars and workshops related to Third Party Risk Management, Enterprise Risk Management, Careers in Cyber to name a few. She also is an Adjunct Professor, teaching Introduction to Cybersecurity and Network Fundamentals. About These Meetings Join us for our monthly Women In TPRM (WNTPRM) meeting to hear from inspiring women about their "Journey to TPRM" as well as exciting program updates! Who Should Attend All TPRM professionals are invited to these events. This group is open to ANYONE, regardless of gender identity or TPRA membership status. Cancellations In the event that this session would need to be canceled, you will be contacted and invited to register for the rescheduled event. Questions & Concerns For more information regarding administrative policies such as complaints, please contact us at info@tprassociation.org . No CPE credits are provided for this event type.

Learn about Laura Valente, Director, Compliance, Ethics & Regulatory Affairs (& Chief Privacy Officer) for General Bank of Canada, and TPRA's WNTPRM May 2025 Leader Spotlight. < See All < Previous Next > Laura Valente Director, Compliance, Ethics & Regulatory Affairs (& Chief Privacy Officer) General Bank of Canada Biography Laura is the Director of Compliance, Ethics, and Regulatory Affairs (& Chief Privacy Officer) at General Bank of Canada. Bringing 10 years of experience across the banking and energy sectors, she has a proven track record in leading strategic initiatives, including the design and operationalization of Third-Party Risk Management and Regulatory Compliance frameworks, managing critical regulatory responses, and establishing key partnerships. Laura brings a global perspective from her experience working in the UK and Canada and studying in France, allowing her to tailor risk management to diverse business environments. Her work focuses on enhancing cross-functional collaboration, aligning risk management with business objectives, and fostering a culture of compliance and operational excellence. Laura is known for advancing risk management practices, driving change and her commitment to empowering others. In addition to her professional achievements, Laura is passionate about volunteering and mentoring individuals, guiding them in navigating their careers and building confidence. Leadership Characteristics Myers Briggs: INTJ Laura approaches leadership with a strategic and long-term outlook. She is detail-oriented, proactive, and committed to building strong partnerships. Her leadership style is rooted in fostering collaboration and trust, while maintaining high standards for quality and integrity in everything she does. Laura is passionate about enabling others to succeed, providing guidance and support to help her team members grow and develop their skills. She can adapt her leadership approach to meet the needs of individuals, demonstrating emotional intelligence and an ability to connect with her team on a personal level. Laura drives meaningful change by empowering her team to take ownership of their work, encouraging accountability, professional growth, and a culture of continuous improvement. Leadership Challenges As a traditional 2nd line of defense function, Risk Management is often viewed as a blocker to operations. Laura has faced the challenge of shifting the perception to Risk Management being a business enabler and strategic partner. This transformation is an ongoing journey and won’t happen overnight. Laura’s perseverance and resilience have been a key force in helping to build and maintain strong partnerships and demonstrate the value of proactive risk management. Operationalizing the TPRM program in the Bank provided a key opportunity to address this challenge. Laura used this initiative to collaborate with, train and guide stakeholders, ensuring they understood how Risk Management could support business objectives and strengthen strategic decisions. Key Take-a-ways The true value of a strong TPRM program extends beyond just mitigating threats - it lays the foundation for operational resilience and long-term success. A well-designed TPRM program helps businesses anticipate risks, adapt to change, and seize opportunities with confidence, knowing they have made well-informed decisions. Achieving this requires building strong relationships, educating stakeholders, and fostering a culture where risk is seen as a strategic partner in achieving business goals. When embedded effectively, TPRM becomes an integral part of decision-making processes, acknowledged early on rather than treated as an afterthought. Laura’s favourite aspect of TPRM is its dynamic, cross-functional nature, allowing her to collaborate with diverse teams across the entire organization. Fun Fact Laura grew up in Scotland before moving to Canada and has a passion for exploring new places and staying active. She loves road-tripping, hiking, kayaking and camping with her husband and their energetic Australian labradoodle puppy. And of course, with her personality type, she is always planning their next adventure!

Learn more about Continuiti Solutions, a TPRA Incubator Member, through this comprehension profile, including a bio, product functionality, contact info, and more. < Main Page < Previous Next > Continuiti Solutions TPRM Services Incubator Member CONTACT INFORMATION Contact@ContinuitiSolutions.com Chris@ContinuitiSolutions.com Patrick@ContinuitiSolutions.com Continuiti Solutions is a Third-Party Risk Management services firm dedicated to helping small and mid-sized organizations meet regulatory expectations without the burden of costly software or internal compliance teams. Show More TOP PRODUCT FUNCTIONALITY CATEGORIES Custom Vendor Intake Forms – Tailored intake workflows that capture key details to assess inherent risk and vendor criticality. Risk Tiering & Scoring – Automated and analyst-reviewed classification of vendors based on data sensitivity, operational impact, and regulatory exposure. Analyst-Led Due Diligence – Experienced risk professionals review and validate SOC reports, financials, security documentation, and compliance evidence. Audit-Ready Documentation – Organized and exportable documentation that aligns with SOC 2, GLBA, FFIEC, and other regulatory frameworks. Custom-Built Client Portal – A proprietary portal where clients can submit vendors, track assessments, view reports, and communicate with analysts in real-time. Continuous Vendor Monitoring – Optional ongoing surveillance of high-risk vendors, including legal, financial, and cybersecurity-related alerts. Regulatory Alignment – Services designed to help organizations maintain compliance with regulatory bodies, audit standards, and third-party governance expectations. Scalable Pricing Model – Flexible service plans that scale with organizational growth, with pricing based on vendor count or flat-rate subscriptions. Dedicated Support & Collaboration – Direct access to compliance analysts and project leads throughout the vendor lifecycle for guidance and support. Workflow Automation with Human Oversight – Intelligent process automation paired with human review to ensure both efficiency and depth in risk evaluation. RESOURCES FROM THIS VENDOR MEMBER Load More EVENTS FROM THIS VENDOR MEMBER NEWS & UPDATES ADDITIONAL OPPORTUNITIES Previous Next

Learn more about Coverbase, a TPRA Incubator Member, through this comprehension profile, including a bio, product functionality, contact info, and more. < Main Page < Previous Next > Coverbase TPRM Platform Incubator Member CONTACT INFORMATION Clarence Chio CEO sales@coverbase.ai Coverbase is a TPRM copilot that automates 90% of third-party risk assessments using AI. Coverbase is your mission control for automating and managing third-party risk management workflows. Show More TOP PRODUCT FUNCTIONALITY CATEGORIES AI Workflow Automation AI Vendor Outreach AI Risk Assessment Reviews AI Document Reviews False Positive Alert Filtering Enhanced Vendor Due Diligence Real-time Continuous Monitoring SLA Monitoring & Reporting Issue Management Reports & Dashboards RESOURCES FROM THIS VENDOR MEMBER Load More EVENTS FROM THIS VENDOR MEMBER NEWS & UPDATES Coverbase Raises $20M To Bring AI-Enabled Security To the Forefront of Procurement November 20, 2025 ADDITIONAL OPPORTUNITIES TPRM Trends & Top Priorities for 2024 SURVEY Coverbase, an AI startup, is conducting a survey on TPRM trends and top priorities for 2024. The survey, which will provide insights into TPRM trends, offers a $50 Amazon gift card for the first 100 respondents. Previous Next

< Previous View Resource Library Next > EBOOKS Third Party Risk Management (TPRM) 101 Guidebook TPRA’s TPRM 101 Guidebook is the most comprehensive, practitioner-built guide available for third-party risk professionals today. Developed over three years with input from experienced practitioners, subject matter experts, and service providers, this 150+ page resource is designed to meet you where you are—whether you're launching a new program or enhancing a mature one. The guidebook walks you through the entire TPRM lifecycle , providing not just theory but practical guidance you can implement immediately. With clarity and depth, it helps you build a program that’s not only compliant but resilient, scalable, and respected by leadership. Key Features Include: Step-by-step guidance across all TPRM lifecycle stages: planning, onboarding, risk assessment, monitoring, offboarding, and more Practical tools and templates for risk scoring, due diligence, contract reviews, and performance monitoring Real-world examples and use cases to help translate concepts into action Checklists and best practices you can apply directly to your current processes Tips for program enhancement , including scaling, cross-functional alignment, and regulatory mapping Insights from the TPRM community , including what’s working (and not working) across industries Alignment with regulatory expectations and common frameworks, from banking and healthcare to tech If you’ve ever struggled to find clear, actionable guidance in a rapidly evolving risk environment, this guidebook was made for you . Built by the community, for the community , the TPRM 101 Guidebook isn’t just a resource. It’s your foundation for confident, proactive third-party risk management. DOWNLOAD

Learn about Chris Phillips, VP, Procurement and Vendor Risk for Lendmark Financial Services, and TPRA's WNTPRM April 2023 Leader Spotlight. < See All < Previous Next > Chris Phillips VP, Procurement and Vendor Risk Lendmark Financial Services Biography Chris has an extensive background within the banking and financial industry with an emphasis in Regulatory Compliance, Third-Party Risk Management, and Procurement. Chris's skills include the ability to identify solutions to improve internal processes, self-starter, and exceptional problem solver. Her skills and experience assisted in successfully developing, implementing, and overseeing the current Third-Party Risk Management Program at Lendmark Financial Services. Certifications included: Certified Regulatory Vendor Program Manager IV (CRVPM IV) Leadership Characteristics Of her many outstanding qualities, Chris has a genuine care and concern for people and enjoys coaching and mentoring others as they endeavor to unlock their inner potential. Servant leadership is at the core of who she is. The saying “There is no ‘I’ in team” is a daily motto that Chris incorporates into her day-to-day responsibilities. Leadership Challenges Having the controls in place to identify and mitigate potential risk sooner rather is a sign of a strong Third-Party Risk Management program. Hindsight is having the ability to see something more clearly after the fact. Once the contract has been executed, the organization will have to live with all that comes along with that contract. Contracts are legally binding agreements between two or more parties. Having the Procurement and Vendor Risk teams engaged sooner rather than later will assist with identifying and mitigating potential risks. Key Take-a-ways "I find having a career in Third-Party Risk Management (TPRM) to be very fulfilling. No two days are every alike. TPRM requires being adaptable and having the ability to think outside the box. TPRM is so much more than following a checklist. Each vendor relationship is unique and must be viewed from various lenses to ensure proper tracking and monitoring of the vendor relationship from a risk perspective, knowing the compliance and regulatory requirements, and collaborating with the various stakeholders." Fun Fact Outside of work, Chris enjoys spending quality time with her husband, Charles and two children, Ryan and Morgan. She also enjoys exercising, coaching/mentoring, and volunteering.

LIVE WEBINAR New & Potential Member Call Tuesday, April 7, 2026 Date & Time Tuesday, April 7, 2026 at 3:00:00 PM UTC Intended Audience Those interested in or who have recently joined TPRA as a Practitioner Member Duration 30 min CPE Credits 0 Fee Free Register Event Description New & Potential TPRA Practitioner Members can join these calls to learn more about TPRA benefits, upcoming TPRA events, and where to get plugged in. Share this event with peers who might be interested in joining TPRA! SPEAKER(S) INFORMATION CPE CREDIT FACILITATED BY Julie Gaiaschi CEO & Co-Founder | Third Party Risk Association (TPRA) Julie Gaiaschi, CISA, CISM, is the CEO & Co-Founder of the Third Party Risk Association (TPRA). She has over 15 years of technology and information security risk experience, with the last 10 years specializing in third party risk identification and mitigation techniques. In her role as CEO, she provides strategic direction for the non-profit, whose mission it is to further the third party risk profession through knowledge sharing and networking. She also has a passion for helping others enhance their own third party risk management programs. In 2021, Julie was awarded " CEO of the Year " by Women in Governance, Risk, and Compliance. Prior to co-founding the TPRA, Julie consulted on third party risk for a large bank. She also developed and led a large health payer organization’s Third Party Security program. There, she established and executed the third party risk assessment process, which included integration into the Procurement process. Prior to her role as the leader over Third Party Security, Julie was a Senior IT Auditor. Julie resides in Iowa with her husband and two girls. She enjoys traveling and cooking. Who Should Attend New TPRA Practitioner Members or those who are interested in joining TPRA and would like more information. Cancellations In the event that this session would need to be canceled, you will be contacted and invited to register for the rescheduled event. Questions & Concerns For more information regarding administrative policies such as complaints, please contact us at info@tprassociation.org . No CPE credits are provided for this event type.

Find blogs, research, timely reports, Ted Talks, and more in this category! All Categories Previous Category Next Category Diversity & Inclusion Filter by Resource Type Blogs & Articles Report Research Ted Talk Found 7 Research Grant Thorton's Women in Business 2025 Report This report explores gender diversity in leadership within mid-market companies, focusing on the technology sector and strategies to enhance performance through inclusive leadership. Check It Out Monday, March 3, 2025 Report Lean In 10th Annual Women in the Workplace Report Lean In and McKinsey & Company released their 10th annual Women in the Workplace study. The report card for corporate America is mixed – and declining commitment is cause for concern. Check It Out Meghan Schrader Monday, February 12, 2024 Blogs & Articles Embrace Gender Diversity in Security & Risk Management Roles Diverse teams provide an immediate and long-lasting solution to the global shortage of security talent. Check It Out Meghan Schrader Thursday, May 30, 2019 Ted Talk How diversity makes teams more innovative Are diverse companies really more innovative? Rocío Lorenzo and her team surveyed 171 companies to find out -- and the answer was a clear yes. In a talk that will help you build a better, more robust company, Lorenzo dives into the data and explains how your company can start producing fresher, more creative ideas by treating diversity as a competitive advantage. Check It Out Meghan Schrader Sunday, October 1, 2017 Blogs & Articles Women in the Workplace 2024: The 10th-anniversary report In the tenth year of our Women in the Workplace research, in partnership with LeanIn.Org, we reflect on the notable gains women have made—and how their experiences at work are, in many ways, the same or worse than ten years ago. Check It Out Meghan Schrader Tuesday, September 17, 2024 Ted Talk 4 ways to redefine power at work to include women of color With many women of color considering exiting the workforce due to unfair conditions, it's time to reshape systems in order to put an end to this massive loss of talent. Exposing the harmful repercussions of racist, toxic organizational cultures, soul coach Rha Goddess and corporate inclusion visionary Deepa Purushothaman share four pathways to reimagine work so women of color are centered as leaders. Instead of aspiring to a "seat at the table", they urge us to remake the whole table -- and stop fighting for "one broke-ass chair." Check It Out Meghan Schrader Tuesday, March 8, 2022 Ted Talk How to Get Serious About Diversity & Inclusion in the Workplace Imagine a workplace where people of all colors and races are able to climb every rung of the corporate ladder -- and where the lessons we learn about diversity at work actually transform the things we do, think and say outside the office. How do we get there? In this candid talk, inclusion advocate Janet Stovall shares a three-part action plan for creating workplaces where people feel safe and expected to be their unassimilated, authentic selves. Check It Out Meghan Schrader Thursday, September 13, 2018

Learn more about HITRUST, a TPRA Advocate Member, through this comprehension profile, including a bio, product functionality, contact info, and more. < Main Page < Previous Next > HITRUST TPRM Services Advocate Member CONTACT INFORMATION marketing@hitrustalliance.net HITRUST, the leader in cybersecurity assurance used in risk management and compliance, offers certification programs for the application and validation of security, privacy, and AI controls. Informed by over 60 standards and frameworks, the company's threat-adaptive approach delivers the most relevant and reliable solutions, including multiple selectable and traversable assessments and certifications, an ecosystem of over 100 independent assessment firms, centralized quality reviews, reporting and certification, and a powerful SaaS platform enabling its program and process. For over 17 years, HITRUST has led the assurance industry and today is widely recognized as the most trusted solution to establish, maintain, and demonstrate security capabilities for risk management and compliance. TOP PRODUCT FUNCTIONALITY CATEGORIES Third-Party Risk Management Assessment & Assurance Framework & Standards Integration Certification & Validation Continuous Monitoring & Updates Reporting & Analytics Corrective Action Plans Remediation Tracking RESOURCES FROM THIS VENDOR MEMBER Introducing the HITRUST ROI Calculator VENDOR MEMBER RESOURCE | October 28, 2025 Managing Third-Party Vendor Risk in Financial Technology VENDOR MEMBER RESOURCE | August 21, 2025 The Trust Tug-of-War in Third-Party Risk Management (TPRM) VENDOR MEMBER RESOURCE | August 21, 2025 Load More EVENTS FROM THIS VENDOR MEMBER NEWS & UPDATES Introducing the HITRUST Assessment XChange Integration with ServiceNow August 21, 2025 ADDITIONAL OPPORTUNITIES Previous Next

FOR IMMEDIATE RELEASE Supply Wisdom Named 2022 Innovator Award Winner Wednesday, April 20, 2022 Sandeep Suresh (right), Managing Director for Supply Wisdom, accepts the 2022 Innovator Award from Julie Gaiaschi (left), CEO & Co-founder of the Third Party Risk Association (TPRA) at TPRA's 2022 In-Person Conference in Austin, TX. Supply Wisdom Named TPRA 2022 TPRM Service Provider Innovator Award Winner AUSTIN, TEXAS — APRIL 20, 2022 — Today at Third Party Risk Association’s (TPRA) 2022 TPRM Conference, “The Art of Third Party Risk” in Austin, Texas, TPRA announced Supply Wisdom as the 2022 winner for their TPRM Service Provider Innovator Award . “This validates our investment in the solution,” said Sandeep Suresh, Head of Operations & Technology at Supply Wisdom. “It’s been a five-year journey and we’re looking forward to exciting times ahead.” TPRA had 14 total Service Provider nominations for this award, with four organizations on their short list just days before the final announcement. Though the selection process was difficult with so many outstanding Service Providers, the TPRA Board of Directors named Supply Wisdom the overall winner. About Supply Wisdom Supply Wisdom provides real-time, full-spectrum risk intelligence software. They were awarded a patent by USPO for their unique and innovative risk management methods and systems that transform dispirit risk data into actual risk intelligence. Their ultimate goal is it make supply chains more secure, prevent disruptions, and ensure operational resilience. They also foster a collaborative culture by partnering with the Practitioner community at large, as well as other association Service Providers and Regulators. They work through various frameworks within institutions, and they uplift others in their community by investing in their people and other charities. About the Award One of the objectives of the Third Party Risk Association (TPRA) is to promote the value that Third Party Risk Management (TPRM) Service Providers add with regard to advancing the TPRM industry as a whole. In support of this objective, the TPRA created the TPRM Service Provider Innovator Award to recognize all the work TPRM Service Providers put into delivering innovative, efficient, and effective tools and techniques for Practitioners to leverage to assess, mitigate, and manage the risk of third parties. Any TPRM Service Provider organization may apply for this award, regardless of membership with the TPRA. This award recognizes a TPRM Service Provider organization that offers a product and/or service to the TPRM Practitioner community at large to assist with identifying, assessing, monitoring, and/or mitigating third party risk, actively advances the industry through pioneering and/or innovating TPRM solutions/services, regularly collaborates with Practitioners, Regulators, and/or other Service Providers in the creation, implementation, and/or delivery of their innovative products/services, and advocates for and exemplifies social responsibility and philanthropy. ### The Third Party Risk Association was created out of a necessity to build a community of like-minded third party risk professionals to allow for the sharing of best practices, exchanging of ideas, and influencing of an industry. This organization is a 501(c)(6) not-for-profit. MEDIA CONTACT Meghan Schrader Meghan.schrader@tprassociation.org www.tprassociation.org FOR MORE INFORMATION https://www.tprassociation.org/innovator-award Previous Next

< Previous View Resource Library Next > VIDEOS TPRM 101: Risk Remediation In this segment of TPRM 101 , TPRA explores Risk Remediation , the fifth section of the Pre-Contract Due Diligence phase. This video guides you through the process of documenting discovered risks, creating mitigation plans, and collaborating with vendors to close gaps—before a contract is signed. Key features include: How to structure risk remediation plans Documentation strategies that support audit readiness Communication and negotiation best practices with vendors Ensuring mitigation aligns with business and regulatory expectations WATCH

< Previous View Resource Library Next > VIDEOS TPRM 101: Contract Review The third video in TPRA’s TPRM 101 series covers the Contract Review phase—an essential part of the third-party risk lifecycle that ensures business expectations are clearly defined, legally enforceable, and aligned with risk and compliance requirements. Key focus areas include: Identifying which contract clauses support TPRM controls Ensuring enforceability of risk and performance requirements Aligning terms with legal, regulatory, and operational obligations Collaboration between procurement, legal, and risk stakeholders Documenting rights related to audits, data use, termination, and reporting WATCH