Search Results

Access presentation slides from TPRA’s 2025 in-person conference. Review key insights and takeaways from sessions led by industry experts in Third Party Risk Management. 2026 In-Person Conference Presentations Filter by Title Select Title 39 Found Filter by Track Select Track Filter by Date Text Select Date Text Clear Filters Winning Hearts & Minds: Leading Change in TPRM from the Ground Up Verity Billson, Group head of TPRM, Experian Track 1: Foundation Trail: Where the Journey Begins Download PowerPoint Hyper TPRM: Rethinking Third-Party Risk for Scale, Speed, and Confidence Ed Thomas, Senior Vice President, ProcessUnity Track 2: Resilience Ridge: Weathering the Storms Download PowerPoint Ransomware in the Supply Chain: Separating Signal from Noise in Third-Party Risk Kelly White & Allan Liska, RiskRecon Track 3: Innovation Overlook: A Birds-Eye View Download PowerPoint Third Party Cyber Risk: New Regulatory Trends You Need to Know Jake Olcott, VP Government Affairs, Bitsight Track 4: Compliance Crossing: Mapping the Legal & Standards Landscape Download PowerPoint Distinguishing 2025 AI Hype to 2026 TPRM Transformation Dean Alms, Chief Product Officer, Aravo Track 3: Innovation Overlook: A Birds-Eye View Download PowerPoint Contract Management: Essential Clauses and Provisions for Risk Mitigation Ryan Hesser, VP TPRM & Legal Counsel, VyStar Credit Union Track 4: Compliance Crossing: Mapping the Legal & Standards Landscape Download PowerPoint The Oxygen Problem: Breathing Life into "Dead-on-Arrival" Questionnaires Steve Cobb & Cody Wright, SecurityScorecard Track 1: Foundation Trail: Where the Journey Begins Download PowerPoint Continuous Monitoring: Evaluating Third-Party Performance Basem Mahmoud, PepsiCo Track 2: Resilience Ridge: Weathering the Storms Download PowerPoint Rethinking Vendor Due Diligence: When Cyber Threats Outpace Traditional Assurance Ryan Patrick, EVP, TPRM Customer Solutions, HITRUST Track 3: Innovation Overlook: A Birds-Eye View Download PowerPoint Beyond Checklists: Leveraging the MITRE ATT&CK Framework for Dynamic Control Evaluation and Third Party Risk Management Keith Stouder, vCISO Practice Lead, Stern Security Track 1: Foundation Trail: Where the Journey Begins Download PowerPoint Surviving the AI Apocalypse: How to Stay Resilient in the Age of AI Tomer Roizman, Co-Founder & CTO, Lema.AI Track 2: Resilience Ridge: Weathering the Storms Download PowerPoint Agents, GPTs, and copilots, oh my! AI just blew up your TPRM program Jeffrey Wheatman, SVP Cyber Risk Strategist, Black Kite Track 3: Innovation Overlook: A Birds-Eye View Download PowerPoint Beyond the Checklist: Building a Unified Third-Party Control Framework Jan Stappers, EVP Solutions Strategy, Mitratech Track 4: Compliance Crossing: Mapping the Legal & Standards Landscape Download PowerPoint Careers & Connections: From Pressure to Power: Mastering Stress in the Modern Workplace Kelvin Pruitt, CEO, MentaLIFE Wellness General Download PowerPoint Beyond Limits: Leading From a Place of Power and Potential Ashley Lentz, Elite Coach & Keynote Speaker, Love Powered Leadership Keynote Download PowerPoint AI Risk 2.0: How the risk landscape changes with expanded functionality Shankar Krishnan, PromptArmor; Courney Tuner, Deere & Co; Kathy McKenna Sauermann, Humana; Chuck Walkup, Hubspot Track 2: Resilience Ridge: Weathering the Storms Download PowerPoint What Recent Third-Party Breaches Mean for the Future of TPRM Ram Vemula & Resha Chheda, Safe Security Track 3: Innovation Overlook: A Birds-Eye View Download PowerPoint Processing Isn’t Deciding: Engage the Humans Eric Rosendaul, Manager, Third Party Assurance, Citizens Track 4: Compliance Crossing: Mapping the Legal & Standards Landscape Download PowerPoint Trailblazing TPRM: From Manual Hikes to Automated Climbs Courtney Turner, Deere & Co Track 1: Foundation Trail: Where the Journey Begins Download PowerPoint How to Leverage Data & AI to Manage Third-Party Risk Lisa-Mae Hill, TPRM Solutions Consultant, Sayari Track 2: Resilience Ridge: Weathering the Storms Download PowerPoint From Manual to Modern: The Predictive Future of TPRM Adrian Conley, Director, Specialty Sales, Vanta Track 3: Innovation Overlook: A Birds-Eye View Download PowerPoint Best Practice: Combining TPRM and Procurement in ONE team Keith Frantz, Prosper Marketplace Track 1: Foundation Trail: Where the Journey Begins Download PowerPoint Stop Managing Risk in Silos: New Playbooks for Cross-Domain Resilience Jenna Wells, CEO, Supply Wisdom Track 2: Resilience Ridge: Weathering the Storms Download PowerPoint AI Efficiency Meets Third Party Risk Sagar Sudhir Behere, Enterprise (ERM) & Head of Third Party Risk (TPRM) Oversight, Circle Internet Financial, LLC Track 3: Innovation Overlook: A Birds-Eye View Download PowerPoint Introduction to TPRM: Understanding the Basics Jenn Wilkinson, Cenlar FSB Track 1: Foundation Trail: Where the Journey Begins Download PowerPoint Managing 3rd Party Risk in the Cloud David Kliemann, IBM Track 2: Resilience Ridge: Weathering the Storms Download PowerPoint Peak Performance: Innovative Solutions to Conquer TPRM Challenges Morgan Binder, Brian Howell & Jake Mitchell of Stripe Track 3: Innovation Overlook: A Birds-Eye View Download PowerPoint Escaping the Questionnaire Trap: Data-Driven Visibility and Resilience for Third-Party Software Risk Gary Schwartz, Senior Vice President, NetRise Track 4: Compliance Crossing: Mapping the Legal & Standards Landscape Download PowerPoint Careers & Connections: From Pressure to Power: Mastering Stress in the Modern Workplace Kelvin Pruitt, CEO, MentaLIFE Wellness General Download PowerPoint Navigating the Paradigm Shift from Human Trust to Digital Trust Dr. Jayne Suess, Consultant/Adjunct Professor, Capitol Technology University General Download PowerPoint LOAD MORE

Learn about Abigail Pia Magat, TPRM Manager for EY GDS Philippines, and TPRA's WNTPRM July 2024 Leader Spotlight. < See All < Previous Next > Abigail Pia Magat TPRM Manager EY GDS Philippines Biography Abigail is a Third Party Risk Manager at EY GDS Philippines. She has spent the duration of her career in fraud prevention, risk management and regulatory compliance. She is currently focused on third-party risk management and threat risk assessment. She manages end-to-end TPRM Programs that includes Risk Profiling, Third-Party Risk Assessments, Findings management, etc. that is aligned to different information security standards, such as but not limited to, ISO27001, SOC 2 Type 2, HIPAA/HITRUST, PCI-DSS, etc. Abigail played an integral role in the stabilization and growth of TPRM in EY GDS Philippines during the pandemic. She leveraged her experience and leadership skills, to ensure the team continued to perform at a high level and at the same time, capitalize on the growth opportunities presented. Leadership Characteristics Throughout the years, Abigail has shown great commitment to her work and is someone that can be trusted as she always carries herself with integrity. Abigail is also supportive to her direct reports and appreciative in the work they do. Additionally, Abigail is detail oriented and has great communication skills. Leadership Challenges A challenge a leader always faces is balancing the responsibilities of work and family, and taking care of their mental and physical health. As a leader, Abigail understands that her responsibilities increased and expectations are higher. The demand for success in her engagements, coupled with ensuring a high-performing team, meant increased pressure to perform. Abigail realized that the key to becoming effective in her role and maintaining a healthy balance was learning how to delegate and setting boundaries for work and personal life. Key Take-a-ways Cybersecurity Risks is continuously evolving as new threats and vulnerabilities are discovered. With the implementation of different Data Protection Laws and Regulatory, the risk appetite of organizations has shifted, investing time and effort in improving their cybersecurity governance and compliance. Although the use of Third Parties has a lot of benefits to organizations, it also comes with great responsibilities to ensure that the risks associated with third parties are identified, evaluated and addressed in a timely manner. Fun Fact Abigail enjoys collecting and listening vinyl records during her free time. She also loves spending time with her four adorable cats (Molly, Marly, Shadow and Mocha) and one dog (Max).

Find out what the women leaders in our community are reading, and join in for insightful advice! All Categories Previous Category Next Category Book Club Filter by Resource Type Audiobook Book Found 14 Book Becoming Bulletproof: Life Lessons from a Secret Service Agent Former Secret Service agent and star of Bravo’sSpy Games Evy Poumpouras shares lessons learned from protecting presidents, as well insights and skills from the oldest and most elite security force in the world to help you prepare for stressful situations, instantly read people, influence how you are perceived, and live a more fearless life. Becoming Bulletproof means transforming yourself into a stronger, more confident, and more powerful person. Evy Poumpouras—former Secret Service agent to three presidents and one of only five women to receive the Medal of Valor—demonstrates how we can overcome our everyday fears, have difficult conversations, know who to trust and who might not have our best interests at heart, influence situations, and prepare for the unexpected. When you have become bulletproof, you are your best, most courageous, and most powerful version of you. Poumpouras shows us that ultimately true strength is found in the mind, not the body. Courage involves facing our fears, but it is also about resilience, grit, and having a built-in BS detector and knowing how to use it. In Becoming Bulletproof, Poumpouras demonstrates how to heighten our natural instincts to employ all these qualities and move from fear to fearlessness. Check It Out Heather Kadavy Tuesday, March 12, 2024 Book Unfiltered: Proven Strategies to Start and Grow Your Business by Not Following the Rules Using personal stories that both instruct and inspire, Unfiltered shares the lessons Rachel has learned on her incredible journey from welfare to millions—and gives you a new way to think about what success can look like in your life. Check It Out Meghan Schrader Tuesday, September 20, 2022 Book The Gifts of Imperfection: 10th Anniversary Edition: Features a new foreword and brand-new tools NEW YORK TIMES BESTSELLER • This tenth-anniversary edition of the game-changing #1 New York Times bestseller features a new foreword and new tools to make the work your own. For over a decade, Brené Brown has found a special place in our hearts as a gifted mapmaker and a fellow traveler. She is both a social scientist and a kitchen-table friend whom you can always count on to tell the truth, make you laugh, and, on occasion, cry with you. And what’s now become a movement all started with The Gifts of Imperfection, which has sold more than two million copies in thirty-five different languages across the globe. What transforms this book from words on a page to effective daily practices are the ten guideposts to wholehearted living. The guideposts not only help us understand the practices that will allow us to change our lives and families, they also walk us through the unattainable and sabotaging expectations that get in the way. Brené writes, “This book is an invitation to join a wholehearted revolution. A small, quiet, grassroots movement that starts with each of us saying, ‘My story matters because I matter.’ Revolution might sound a little dramatic, but in this world, choosing authenticity and worthiness is an absolute act of resistance.” Check It Out Tijuwana Burton Tuesday, March 1, 2022 Audiobook Set Boundaries, Find Peace: A Guide to Reclaiming Yourself Healthy boundaries. We all know we should have them - in order to achieve work/life balance, cope with toxic people, and enjoy rewarding relationships with partners, friends, and family. But what do "healthy boundaries" really mean - and how can we successfully express our needs, say "no", and be assertive without offending others? Check It Out Meghan Schrader Tuesday, March 16, 2021 Book Insight: The Surprising Truth About How Others See Us, How We See Ourselves, and Why the Answers Matter More Than We Think Most people feel like they know themselves pretty well. But what if you could know yourself just a little bit better—and with this small improvement, get a big payoff…not just in your career, but in your life? Research shows that self-awareness—knowing who we are and how others see us—is the foundation for high performance, smart choices, and lasting relationships. There’s just one problem: most people don’t see themselves quite as clearly as they could. Fortunately, reveals organizational psychologist Tasha Eurich, self-awareness is a surprisingly developable skill. Integrating hundreds of studies with her own research and work in the Fortune 500 world, she shows us what it reallytakes to better understand ourselves on the inside—and how to get others to tell us the honest truth about how we come across. Through stories of people who have made dramatic gains in self-awareness, she offers surprising secrets, techniques and strategies to help you do the same—and how to use this insight to be more fulfilled, confident, and successful in life and in work. Check It Out Xylia Hall Tuesday, June 5, 2018 Book "Playing Big" by Tara Mohr Playing Big is for you if... • You feel a calling or longing to play bigger, but you feel afraid or unsure about the next right steps. • You want to make a positive difference in the world but feel held back in some way. • You feel done with striving to play big on the world’s terms – but you do want to play big according to what that truly means to you. • You wish you struggled less with fear, self-doubt, worries about what others think, or tentativeness around your ideas. • You suspect it would be a whole lot more fun to play big. Check It Out Meghan Schrader Tuesday, December 29, 2015 Book The Speed of Trust: The One Thing that Changes Everything From Stephen R. Covey's eldest son comes a revolutionary new path towards productivity and satisfaction. Trust, says Stephen M.R. Covey, is the very basis of the new global economy, and he shows how trust—and the speed at which it is established with clients, employees and constituents—is the essential ingredient for any high–performance, successful organization. For business leaders and public figures in any arena, The Speed of Trust offers an unprecedented and eminently practical look at exactly how trust functions in our every transaction and relationship—from the most personal to the broadest, most indirect interaction—and how to establish trust immediately so that you and your organization can forego the time–killing, bureaucratic check–and–balance processes so often deployed in lieu of actual trust. Check It Out Heather Kadavy Tuesday, January 6, 2009 Book "Permission to Speak" by Samara Bay Getting heard is a tricky business: It’s what you say and how you show up, filtered through your audience’s assumptions and biases—and maybe even your own. For women, people of color, immigrants, and queer folks, there’s often a dissonance between how you speak and how we collectively think powerful people should speak: like the wealthy white men who’ve historically been in charge. But, fortunately, the sound of power is changing. Check It Out Meghan Schrader Tuesday, February 7, 2023 Book Speak: Find Your Voice, Trust Your Gut, and Get from Where You Are to Where You Want to Be From Tunde Oyeneyin, the massively popular Peloton instructor, fitness star, and founder of SPEAK, comes an empowering, inspiring book about how she transformed grief, setbacks, and flaws into growth, self-confidence, and triumph—perfect for fans of Shonda Rhimes, Brene Brown, and Glennon Doyle. On any given day, thousands of devoted people clip into their bikes and have their lives changed by Tunde Oyeneyin. From her platform in a Peloton studio, she encourages riders with her trademark blend of positivity, empathy, and motivational “Tunde-isms,” to push themselves to their limits both on and off the bike. Now, fans and readers everywhere can learn about her personal journey, and discover how they too can “live a life of purpose, on purpose” with Speak, a memoir-manifesto-guide to life inspired by her immensely popular Instagram Live series of the same name. Taking us through each step of the SPEAK acronym—Surrender, Power, Empathy, Authenticity, and Knowledge—Oyeneyin shares the lessons she has learned about loss, love, body image, and how she has successfully created an intentional, joyful life for herself, offering an accessible blueprint for anyone looking to make a positive change in their lives. Check It Out Heather Kadavy Tuesday, May 3, 2022 Book Jacinda Ardern: Leading with Empathy Jacinda Ardern: Leading with Empathy carefully explores the influences - personal, social, political and emotional - that have shaped Ardern. Peace activist and journalist Supriya Vani and writer Carl A. Harte build their narrative through Vani's exclusive interviews with Ardern, as well as the prime minister's public statements and speeches and the words of those who know her. We visit the places, meet the people and understand the events that propelled the daughter of a small-town Mormon policeman to become a committed social democrat, a passionate Labour Party politician and a modern leader admired for her empathy and courage. Check It Out Heather Kadavy Tuesday, August 10, 2021 Book "Untamed" by Glennon Doyle There is a voice of longing inside each woman. We strive so mightily to be good: good partners, daughters, mothers, employees, and friends. We hope all this striving will make us feel alive. Instead, it leaves us feeling weary, stuck, overwhelmed, and underwhelmed. We look at our lives and wonder: Wasn’t it all supposed to be more beautiful than this? We quickly silence that question, telling ourselves to be grateful, hiding our discontent—even from ourselves. Check It Out Meghan Schrader Tuesday, March 10, 2020 Book I Am Malala: How One Girl Stood Up for Education and Changed the World In this New York Times bestselling memoir, Malala Yousafzai—the youngest winner of the Nobel Peace Prize—inspires young readers with her stunning story of resilience and power. I Am Malala. This is my story. Malala Yousafzai was only ten years old when the Taliban took control of her region. They said music was a crime. They said women weren't allowed to go to the market. They said girls couldn't go to school. Raised in a once-peaceful area of Pakistan transformed by terrorism, Malala was taught to stand up for what she believes. So she fought for her right to be educated. And on October 9, 2012, she nearly lost her life for the cause: She was shot point-blank while riding the bus on her way home from school. No one expected her to survive. Now Malala is an international symbol of peaceful protest and the youngest ever Nobel Peace Prize winner. In this Young Readers Edition of her bestselling memoir, reimagined specifically for a younger audience and including exclusive photos and material, we hear firsthand the remarkable story of a girl who knew from a young age that she wanted to change the world—and did. Malala's powerful story will open your eyes to another world and will make you believe in hope, truth, miracles and the possibility that one person—one young person—can inspire change in her community and beyond. Check It Out Heather Kadavy Tuesday, June 14, 2016 Book Drive: The Surprising Truth About What Motivates Us The New York Times bestseller that gives readers a paradigm-shattering new way to think about motivation from the author of When: The Scientific Secrets of Perfect Timing Most people believe that the best way to motivate is with rewards like money—the carrot-and-stick approach. That's a mistake, says Daniel H. Pink (author of To Sell Is Human: The Surprising Truth About Motivating Others). In this provocative and persuasive new book, he asserts that the secret to high performance and satisfaction-at work, at school, and at home—is the deeply human need to direct our own lives, to learn and create new things, and to do better by ourselves and our world. Drawing on four decades of scientific research on human motivation, Pink exposes the mismatch between what science knows and what business does—and how that affects every aspect of life. He examines the three elements of true motivation—autonomy, mastery, and purpose-and offers smart and surprising techniques for putting these into action in a unique book that will change how we think and transform how we live. Check It Out Rachel Curran Tuesday, April 5, 2011 Book The Platinum Rule: Discover the Four Basic Business Personalities and How They Can Lead You to Success In this entertaining and thought-provoking book, Tony Alessandra and Michael O'Connor argue that the "Golden Rule" is not always the best way to approach people. Rather, they propose the Platinum Rule: "Do unto others as "they'd" like done unto them". In other words, find out what makes people tick and go from there. Check It Out Heather Kadavy Sunday, February 1, 1998

Being a leader is often about mastering the more subtle aspects of communication and interpersonal relationships. Learn how through a variety of resources. All Categories Previous Category Next Category Soft Skills Filter by Resource Type Blogs & Articles Book Ted Talk Found 6 Book Becoming You: The Proven Method for Crafting Your Authentic Life and Career by Suzy Welch Discover your true self and build a fulfilling career with Suzy Welch, director of NYU Stern;s Initiative on Purpose and Flourishing. Drawing from her popular NYU class, Welch provides a dynamic, step-by-step guide to uncovering your purpose in today's fast paced world. Check It Out Tuesday, May 6, 2025 Ted Talk How vulnerability makes you a better leader As the founder of a startup, Tracy Young often worried that employees and investors valued male CEOs more -- and that being a woman compromised her position as a leader. In this brave, personal talk, she gives an honest look at the constraints women face when trying to adapt to a male-dominated business culture -- and shares how she developed the courage and vulnerability to lead as her complete, raw self. (This talk contains a graphic story. Discretion is advised.) Check It Out Meghan Schrader Tuesday, March 2, 2021 Blogs & Articles 'Sorry' but these are things women should never write in an email "When it comes to emails, it isn't a surprise that men and women communicate differently. But research shows that when certain writing styles are used by women, the message can be received differently." Check It Out Meghan Schrader Monday, August 5, 2019 Blogs & Articles The Language Women Use in the Workplace and What it Means "As a woman, have you ever found yourself using the phrases “I may be wrong, but…”, or “I’m not an expert in this, but…”, or excessively using the word “sorry…”? Research has found that women are much more likely to use self-deprecating or ‘softer’ language in the workplace. Let’s take a closer look at what language women tend to use and why." Check It Out Meghan Schrader Wednesday, May 19, 2021 Ted Talk Crucial Facts You Need To Know About Your Voice In Your Career Why do top all the professionals, executives, organizational leaders and speakers get a voice coach to help them? When you can communicate what is remarkable, and exceptional about you, you then become irreplaceable in the marketplace. Here are a few defining facts. Your voice speaks louder than what you have to say. Your voice makes people believe what you say. Just a small adjustment can make a big difference to your speaking. Think about it….what do you hope to accomplish with your communication skills and is your voice ready? Check It Out Meghan Schrader Tuesday, December 8, 2020 Ted Talk Get Comfortable with Being Uncomfortable Luvvie Ajayi Jones isn't afraid to speak her mind or to be the one dissenting voice in a crowd, and neither should you. "Your silence serves no one," says the writer, activist and self-proclaimed professional troublemaker. In this bright, uplifting talk, Ajayi Jones shares three questions to ask yourself if you're teetering on the edge of speaking up or quieting down -- and encourages all of us to get a little more comfortable with being uncomfortable. Check It Out Meghan Schrader Tuesday, January 2, 2018

Vendor & Third Party Risk USA In Strategic Partnership Between CeFPro and the TPRA October 14 – 15, 2026 | Fort Worth, Texas REGISTER NOW BECOME A SPONSOR BECOME A SPEAKER SUBSCRIBE TO UPDATES Why Attend? Attending the Vendor & Third Party Risk Conference provides a valuable opportunity to explore how organisations are responding to an increasingly complex third-party risk landscape across sectors. From cloud concentration and ‘too critical to exit’ vendors to fourth- and nth-party exposure across global supply chains, the event will examine how risk leaders are strengthening operational resilience and preparing for real disruption scenarios. The agenda will also explore how organisations are scaling TPRM programmes through technology, including AI, automation, predictive analytics, and continuous monitoring, while navigating evolving regulatory expectations and cybersecurity requirements. Register your interest to be the first to see the agenda when it launches, or secure your place today at the lowest pre-agenda ticket price. Topics & Tracks Operational Risk & Resilience From cloud concentration to failure scenarios, incident response and fourth & nth party risk in complex supply chains. Innovation & Automation Explore how organizations are using AI & automation, predictive analytics & risk forecasting, and continuous monitoring to strengthen and scale TPRM programs. Regulation & Standards Understand the evolving regulatory expectations across US regulators and global jurisdictions, including cybersecurity requirements, audit readiness, and demonstrating effective third-party risk controls while balancing innovation with compliance. Tickets & Pricing Single Ticket $799 per person For individual TPRM practitioners* *those who assess, monitor, mitigate, etc., third party risk within their own organizations Register Group Ticket $639.20 per person For teams of 5 or more TPRM practitioners* *those who assess, monitor, mitigate, etc., third party risk within their own organizations Register Vendor Ticket $1499 per person For those representing information or service providers* *Vendor, platform or tool provider, consultant, TPRM services, etc. Register This event is brought to you by the Third Party Risk Association (TPRA) and the Center for Financial Professions (CeFPro) as part of our strategic partnership, bringing together practitioners and industry experts to share practical insights and real-world experiences. + REGISTER NOW BECOME A SPONSOR BECOME A SPEAKER SUBSCRIBE TO UPDATES

Our Mentorship Program is open to ANYONE in the TPRM industry. Our goal for this program is to align mentors and mentees to address and support the needs of our membership. Become a mentor or mentee! Mentorship Program Our Mentorship Program is open to anyone , regardless of TPRA membership or gender identity. Our goal for this program is to align mentors and mentees to address and support the needs of the TPRM community. Please be sure to review participant expectations prior to applying. Mentor & Mentee Expectations By setting clear guidelines and expectations, both mentors and mentees can derive maximum value from the mentorship program, fostering a positive and productive mentoring relationship. Here is a list of guidelines and expectations for program participants: Commitment Meetings & Time Management Communication Confidentiality Preparation & Discussion Topics Cultural Sensitivity Professionalism Feedback & Evaluation Rematch Guidelines Mentorship relationships are intended to last a year with at minimum quarterly discussions; however, Mentors and Mentees can determine the appropriate length of the relationship based on needs. Demonstrate a strong commitment to the mentorship program and the development of the mentee. Allocate sufficient time for regular meetings (30 - 60 minutes on average). While Mentors will facilitate and serve as role models in this relationship, by participating in the program, both Mentors and Mentees will come prepared with topics for one another, and be available, receptive, committed, and honest with each other. If the mentor and/or mentee hasn't reached out and/or responded within one month of receiving your match email, then please complete our Rematch Form (below) to receive a new mentor or mentee. It is the responsibility of the mentor to schedule regular, reoccurring meetings based on the meeting frequency agreed upon by both parties, to maintain a consistent connection. Respect your mentor/mentee's time by being punctual and prepared for meetings. Manage your time effectively to balance mentoring with other commitments. Mentor to reach out to the mentee as soon as the match is made and discuss how often to meet (may not be the frequency you selected on your mentor/mentee form). Respond to emails, calls, or messages in a timely manner (within 3 business days of receiving). Maintain open and transparent communication with the mentor/mentee. Actively listen to the mentor/mentee's concerns, questions, and feedback. Anything discussed within the mentor/mentee relationship is confidential. Avoid sharing sensitive information without explicit consent. Come to meetings well-prepared with specific topics or questions to discuss. Be proactive in setting the agenda for your mentoring sessions. Mentors and mentees are responsible for creating topics for each meeting. Mentees can share what they hope to get out of the conversations and mentors can share what they are subject matter experts in. If the mentee does not have any specific topics to discuss, the mentor should be prepared with a list of topics. Be aware of and respect cultural differences. Foster an inclusive and supportive environment for the mentor/mentee. Provide regular feedback on the mentee's progress. Be open to receiving feedback from the mentee and adjust the mentoring approach accordingly. Feedback forms will be provided to program participants on a quarterly basis to ensure they are getting the most out of their mentor/mentee relationship, as well as the mentorship program overall. Conduct yourself in a professional manner in all interactions. Uphold ethical standards and maintain confidentiality as required. Model professional behavior and ethical conduct. Uphold the values and standards of the organization or industry. If any of the following apply to you, please follow the instructions below. You are no longer interested in participating in the Program. You have not received a response from your match, or your match has stopped responding. You have completed the mentorship relationship (goals were met). You and/or your match have changed jobs/roles and no longer qualify for this Program. You wish to be matched with someone else. You were matched by mistake (already have a match, didn't apply to this program, etc.) Next Steps: Complete the "Termination & Rematch" form below . Please also inform your mentorship partner of your decision. Please remember that we match mentors and mentees when there are enough submissions. This may result in a longer wait time. If your rematch is time-sensitive , please specify that in the "Anything else we should know?" section of the form. If you have any other questions or concerns regarding the Mentorship Program, please contact Kelsey Haney at kelsey.haney@tprassociation.org . Mentorship Program Application The Third Party Risk Association (TPRA) is excited that you have chosen to participate in our Mentorship Program. Anyone may apply to be a mentor or mentee within this program, regardless of gender identity. If it is your goal to be matched with a TPRM professional of a specific gender, please contact TPRA or note your preference below. Application Process In order to be properly matched with a mentor/mentee, please complete the application below. Following submission of the form, you will receive an automated email confirming the success of your submission. Check your junk email for this message. Once you have been matched with a mentor or mentee, you will be notified via email. Please keep in mind that we match mentors and mentees when there are enough submissions . This may result in a longer wait time. If your rematch is time-sensitive , please specify that in the "Anything else we should know?" section of the form. Once you have received your match, you may begin the mentorship relationship by setting up your first meeting. Things to Keep In Mind TPRA does not provide oversight or direction on your mentorship relationship. It is up to the mentorship pair to decide the direction of the experience. While the Mentor will facilitate and serve as a role model in this relationship, by participating in this program, both Mentor and Mentee should come prepared with topics for each other and be available, receptive, committed, and honest with each other. TPRA will send out an annual feedback form, checking in on the experience of participants. We look forward to hearing back from you on the success of the program. If you have any other questions or concerns regarding the Mentorship Program, please contact Kelsey Haney at kelsey.haney@tprassociation.org . First name* Last name* Title/Role* Organization* Email* Phone* Please note your organizations industry.* LinkedIn URL* Country/Region of Residence* Time Zone* Have you previously applied to TPRA's Mentorship Program?* Yes No Would you like to be a Mentor, Mentee or both? * Mentor Mentee Both Do you have a preference on the gender-identity of your mentor/mentee?* Woman Man No Preference Please indicate your gender-identity.* Man Woman Non-binary Prefer not to say Other This allows us to attempt to meet the preferences of our applicants indicated in the question prior. What do you hope to gain from this relationship or experience? Select all that apply.* TPRM Benchmarking Leadership Characteristics Soft Skills Other How often would you like to meet? While the program is meant to be a year-long, the Mentor/Mentee will determine the appropriate length of the partnership.* Monthly Quarterly Other Tell us a bit about yourself or provide a fun fact.* Anything else we should know? I agree to keep mentoring conversations confidential. * I agree to adhere to the expectations outlined above. * I understand that this Mentorship Program is open to anyone , regardless of gender identity, and that I may be matched with a TPRM professional of any gender. * Submit Note: If you experience issues submitting the form, please email Meghan at meghan.schrader@tprassociation.org . Relationship Termination & Rematch Please complete this form if you have/wish to end your current mentorship relationship, need to be rematched, or wish to withdraw from the program. First name* Last name* Job Title* Organization* Email* Feedback on Current Relationship What is the reason for terminating the current mentor/mentee relationship? * Relationship concluded naturally (Mentorship goals were met) Scheduling conflicts No response after multiple attempts to contact Want to change mentorship position preference (e.i. Mentor wanting to become Mentee) I or my partner have changed jobs/roles within our company Matched by mistake (e.g., didn’t apply, already have a match) Other Feel free to provide further details, if necessary. How would you rate your experience with your mentor/mentee relationship?* Excellent Good Neutral Poor Other Do you have any suggestions for improving the mentorship program? Future Participation Are you interested in being rematched and continuing in the mentorship program?* Yes, I would like to be rematched. No, I would like to be removed from this program. I already have a match and do not need a rematch. Anything else we should know? Submit

Learn about Jennifer Wilkinson, Vice President TPRM for Cenlar FSB, and TPRA's WNTPRM November 2024 Leader Spotlight. < See All < Previous Next > Jennifer Wilkinson Vice President TPRM Cenlar FSB Biography I have spent 29 years in the mortgage industry, my first job out of college was working in the Appraisal Management department for PHH Mortgage where I worked my way through a variety of roles in Vendor Management, Loan Operations and Processing, Strategic Sourcing and Provider Governance, Vendor Relations and Strategic Planning working primarily with their Servicing teams where we focused on building a robust and regulatory compliant TPRM program. I came to Cenlar 9 years ago in September where I got to build a TPRM from scratch working with the Chief Risk Officer, Chief Compliance Officer, Chief Technology Officer, Office of the CISO and a bevy of some of the best Subject Matter Experts in the business. I am proud to be working for Cenlar, the largest mortgage sub-servicer in the U.S. running their TPRM function. I am an active member of the ABA’s TPRM roundtable and this past June I was invited to speak on a panel at their 2024 National Risk and Compliance Conference in Seattle. In July I was named an Elite Woman by Mortgage Professional America. This award celebrates women who are considered top performers and role models across the mortgage industry. I am a self-proclaimed TPRM nerd and proud to be a diversity ambassador with Cenlar’s DEI group. I love what I do and enjoy sharing best practices with those interested in and just starting out in TPRM! Leadership Characteristics Accountability Counts, clear goals and objectives. Listen and extend flexibility where you can while being fair to the team. Have some fun doing what you do. Risk is such a serious and important arm of the organization, you have to laugh where you can. Build positive relationships with others and always be open to collaboration-- the best organizations thrive when people work together for the common good of the organization as opposed to their department. Leadership Challenges My degree is in Communications- my experience is in TPRM. I kind of evolved into this genre of risk because I was really good at talking to people and asking questions in a way that while considered credible challenge at times, didn't come off as adversarial. I have worked with great leaders who have taught me a lot, I have also worked with not so great leaders who have taught me ways I can be a better leader to my team and made me work hard to ensure that I am able to articulate the risks of not having a robust TPRM in a regulated institution. Key Take-a-ways Build Positive Relationships- Being friendly, dependable and responsive counts- in TPRM it is important to build positive relationships with the business leaders within your organization. The same goes for your team. Verify! Verify! Verify!- In TPRM, Trust but Verify. Documentation/evidence counts! Add Value- Make sure you have a good WIIFM speech for those who resist TPRM. Everyone needs to be a risk manager! Stay In Tune- Stay on top of industry best practices and regulatory changes to ensure your risks aren’t being increased by third party relationships Question the unfamiliar- Ask questions when you need to. TPRM is a genre that requires continuous learning. You will not be able to grow your program to meet the needs of your organization if you don’t understand where risks lie. Be Prepared for the bad stuff to happen- Anticipate that bad things can happen and work to ensure you have the appropriate stakeholders in the organization to drive how the organization will respond to them. There is no I in team- I am not successful as a stand-alone entity. I have built an incredible team who makes me proud of the work that the TPRM does for my organization. The program is not successful because of my efforts alone. A rule of thumb- Make Sure your program is auditable, transparent and repeatable. It will help immensely with regulatory audits. Fun Fact I love to cook- and with my Eastern European background, I make a mean homemade Pierogi.

Bitsight Third Party Risk Management is an end-to-end solution that includes continuous, data-driven, validated cyber risk insights and automated vendor assessment capabilities. < Back Bitsight Wednesday, May 13, 2026 1:00 - 1:25 PM CT TPRM Platform Globe Mail Search Search Search Bitsight Third Party Risk Management is an end-to-end solution that includes continuous, data-driven, validated cyber risk insights and automated vendor assessment capabilities. It delivers real-time monitoring, risk prioritization, actionable remediation, and workflow automation—helping organizations proactively manage the entire third-party lifecycle in one place with trusted, independently validated security analytics and proven cyber risk intelligence on top of a robust network of vendor engagement. Presenter(s) Evan Tegethoff VP of Solutions Engineering Evan Tegethoff is an information security professional currently serving as the Vice President of Solutions Engineering at BitSight. With over 23 years of experience in the cybersecurity industry, Evan helps organizations holistically consider cybersecurity, data protection, technology, and business risk as a unified concept. Prior to BitSight, Evan developed third-party risk programs for numerous large organizations, through his work with Optiv, Accuvant, and Forsythe Technologies. Additionally, he has led consulting… Show More Previous Next

FOR IMMEDIATE RELEASE Third Party Risk Association (TPRA) Announces Launch of Professional Certification Program Friday, September 16, 2022 1/1 TPRA, a not-for-profit Third-Party Risk Management (TPRM)-focused organization, launches first professional certification, Third Party Cyber Risk Assessor (TPCRA) ANKENY, IOWA — 16 SEPTEMBER 2022 — Third Party Risk Association (TPRA) announced the official launch of the Third Party Risk Association Certification Program, open to all members of the third-party risk management (TPRM) industry to verify their knowledge, skills, and abilities within their profession. “We are excited to announce the launch of the Third Party Risk Association Certification Program,” Julie Gaiaschi, CEO and co-founder of TPRA, said. “As an organization whose mission it is to further the profession of third-party risk management through knowledge sharing and networking, it was really important to us to build-out a set of professional credentials for the practitioner community.” Professional certifications are a way to verify earner knowledge and understanding of a topic, establish professional credibility, and advance one’s career within a specialized profession. They allow earners to distinguish themselves from their peers by demonstrating commitment to mastering their skills and excelling in their field. According to MBO Partners, professional certifications are also known to boost efficiency. The advanced training, information and knowledge gained from specialized coursework can provide earners with up-to-date tools and technical strategies that will serve to guide and direct them in the execution of projects, allowing them to manage all aspects of their work more effectively. Studies also show that employees who invest in certifications tend to earn higher salaries. MBO Partners notes that Project Management Professional (PMP) certification recipients report median salaries that are 26% higher than those who are not PMP certified. Third Party Cyber Risk Assessor (TPCRA) Certification Pre-registration is now open for TPRA’s first certification, the Third Party Cyber Risk Assessor (TPCRA) Certification. The TPCRA Certification is a specialized qualification designation to confirm understanding and skill in the assessment of third-party cybersecurity controls and processes, as well as validate competency in the creation, execution, and management of third-party cyber risk assessments. In addition, the Certification will authenticate and add credibility to TPRM professional expertise as a third-party cyber risk assessor. The TPCRA is recommended for those who assess, monitor, and review third-party cybersecurity and information technology controls, as well as identify and mitigate risk related to said controls. Eligibility for this certification includes three or more years of experience in a full-time risk management/analyst and/or cybersecurity-related role, though substitutions may be obtained for up to one year of work experience. TPCRA Certification Overview The TPCRA Certification examination is designed to be challenging and ensure that the participant is fully knowledgeable, competent, and proficient in necessary cybersecurity and information technology assessment terms and techniques. The examination will cover the domains of: cybersecurity and TPRM basics, pre-contract due diligence, continuous monitoring, physical validation, disengagement due diligence, cloud due diligence, and reporting and analytics. The examination is a 150-question, multiple-choice assessment with a variety of question formats, including scenario-based, true/false, and ‘choose best response.’ It will be offered either virtually or in person and monitored via an assigned proctor, with a 3-hour time limit. TPRA is also offering optional training sessions to allow participants to be fully prepared for the examination. Purchase of TPCRA Training includes a copy of the book Cybersecurity and Third Party Risk: Third Party Threat Hunting by educator and TPRM leader, Gregory Rasner. “I’m excited to be able to announce the collaboration with Third Party Risk Association on this new training certification track around cybersecurity and third-party risk,” Rasner said. “The foundations [of this course] are built upon the book, but it’s new material that’s been built upon my experience, regulatory guidance, environmental changes, and other things that have come up since publication.” At this time, all training sessions will be taught by Rasner, giving participants direct access to the author of the text on which the examination is based. These lessons are designed to be interactive, allowing for conversation and classified learning, with a blend of informative lectures, open discussions, and workshops. “I hope that you’re as excited as I am to continue to grow this field and expertise within this new training and certification, and thanks for the collaboration with Third Party Risk Association,” Rasner said. Limited Time Promotion To celebrate the launch of their Certification Program and first certification, TPRA is offering a limited-time promotion to the first 30 individuals who register for the TPCRA Examination, Training, or Training and Examination Bundle. These individuals will receive a copy of the book, Cybersecurity and Third Party Risk: Third Party Threat Hunting, a TPCRA bookmark signed personally by the author, and 30 days of virtual access to the author and TPCRA Training Instructor, Rasner, to ask him any questions participants may have prior to their examination. Interested individuals can learn more and pre-register for the Third Party Cyber Risk Assessor (TPCRA) Certification on the TPRA website at www.tprassociation.org/tpra-certifications . Training and testing will begin in January 2023. “We are so excited to offer this first certification and cannot wait to launch the others in the coming years,” Gaiaschi said. “Thank you for your continued support of the Third Party Risk Association.” Founded in 2018, Third Party Risk Association (TPRA) was created out of a necessity to build a community of like-minded third-party risk professionals to allow for the sharing of best practices, exchanging of ideas, and influencing of the industry. Membership is available for both third-party risk management practitioners and service provider organizations, and is designed to promote collaboration, education, and advancement of the industry as a whole. This organization is a 501(c)(6) not-for-profit. ### Third Party Risk Association (TPRA) and Third Party Risk Association Certification Program are either registered trademarks or trademarks of Third Party Risk Association (TPRA) in the United States and/or other countries. The names of actual companies and products mentioned herein may be the trademarks of their respective owners. MEDIA CONTACT Meghan Schrader Meghan.schrader@tprassociation.org www.tprassociation.org FOR MORE INFORMATION https://www.tprassociation.org/tpra-certifications Previous Next

Learn about Jill Czerwinski, Managing Partner - Third Party Risk Services for Crowe LLP, and TPRA's WNTPRM November 2022 Leader Spotlight. < See All < Previous Next > Jill Czerwinski Managing Partner - Third Party Risk Services Crowe LLP Biography Jill has been with Crowe for over 20 years, and started the third party risk practice in 2009. She started her career in Cybersecurity, pivoting after seeing clients suffer a breach due to vendors despite strong internal security programs. Leadership Characteristics Jill's Meyers Briggs profile is an ISTJ - meaning she thrives on observing and analyzing facts. She has always been drawn to consulting because of the ability to independently observe many companies and synthesize their strengths and weaknesses. Third party risk plays to her strengths with even more company data points. Leadership Challenges Jill's primary challenge in leadership is slowing down. She sometimes moves too quickly through tasks without taking the opportunity to observe, ask, collaborate, and listen. She often focuses with relentless prioritization, asking what she can stop doing so she can do other things with more focus. Key Take-a-ways Jill enjoys Third Party Risk because of the opportunity to get a bird's-eye-view into a company's extended ecosystem. She notes: "If you think of your job as a questionnaire processor, you miss the opportunity to take a step back and see the strategy in all those tasks." Fun Fact Jill enjoys traveling with her husband and two children. They've been to about a dozen states so far, with a trip out West to the National Parks planned for next year.

Learn about Madelyn Norwood, Solution Advisor for Ncontracts, and TPRA's WNTPRM April 2025 Leader Spotlight. < See All < Previous Next > Madelyn Norwood Solution Advisor Ncontracts Biography Madelyn previously served as the Manager of Customer Success at Venminder, Inc. and has recently transitioned to Solutions Advisor through the acquisition of Venminder by Ncontracts. She was one of the first Senior Customer Success Managers at Venminder and transitioned to managing the team in 2021. In both roles, her responsibilities include cultivating long-lasting relationships, advising on best practices for Third Party Risk Management (TPRM) to Venminder’s diverse customer base, collaborating with Product and Development to enhance our SaaS solution, and integrating customers’ complex processes into their software. Madelyn joined Venminder in early 2019 and quickly developed an interest in third party risk and vendor management. She is a Certified Third-Party Risk Professional (CTPRP) and Certified Vendor Management Professional (NCVMP) with plans to continue her professional education. Leadership Characteristics What I value most in leaders are transparency, accountability, and empathy. I strive to demonstrate these qualities because they align with my own expectations for leadership. The bar is set high for me, especially with the fearless leadership I’ve experienced at both Venminder and Ncontracts. One of the most rewarding aspects of being a leader is identifying positive solutions for the team and our customers. I love problem-solving and having a new challenge thrown at me. I'm a "just figure it out" kind of gal. It’s important to listen to understand rather than just to respond and to recognize that your way may not always be the best way. This fosters a culture of empowerment within the team and helps everybody grow personally and professionally. Additionally, I believe in getting involved and working alongside your team. I never want to become so focused on management that I forget the importance of being a good teammate. We’re all striving toward a common goal. Leadership Challenges A challenge I faced as a leader was navigating and understanding the complexities of Third-Party Risk Management (TPRM) beyond the financial services sector, especially as its influence expanded into various other industries. These verticals do not necessarily operate their programs the same as Traditional FI's and come with their own set of rewarding challenges. It taught me to be adaptable in my approach with customers allowing me to better understand their needs. Key Take-a-ways There is always room for growth in the world of TPRM. It is what you make of it, and there are so many opportunities to be had. Whether it is honing your overall skills and broader knowledge of TPRM or picking one piece of it that interests you most, there is something for everybody. Fun Fact My favorite place is at the beach with my husband and kids with not a single plan in sight. I’m the best aunt in the entire world. I'm an avid University of Louisville Cardinal fan. Go CARDS! I love a well-made margarita and tacos… especially by the beach.

Learn about Madiha Fatima, Director, Head of Third Party Risk Management for Angelo Gordon, and TPRA's WNTPRM March 2023 Leader Spotlight. < See All < Previous Next > Madiha Fatima Director, Head of Third Party Risk Management Angelo Gordon Biography Madiha Fatima is a Director and Head of Third Party Risk Management at Angelo Gordon, where she leads the development of Third Party Risk Management framework while enabling businesses to achieve their strategic objectives from utilizing service providers. Angelo Gordon is a leading global investment management firm headquartered in New York. Madiha oversees the firmwide Third Party Risk Management function including vendor cyber, technology, business continuity and data security assessments and governance. Madiha is a very well-known industry expert in risk management. She has been featured as Top 50 Women Leaders of New York as well as in Wall Street Journal and published in various magazines. Prior to joining Angelo Gordon, Madiha Fatima served as Head of Third Party Risk Governance & Oversight at DTCC. Madiha is a Certified Third Party Risk Professional (CTPRP). Madiha earned a Bachelor of Science in Financial and Capital Markets from Rutgers Business School. Leadership Characteristics D&I champion, Madiha launched various programs focused on women advancement in financial industry. She has been recognized and awarded the outstanding leadership award by Financial Industry awards hosted by DTCC and FICC. Leadership Challenges Madiha worked her whole career in a challenging environment showcasing her resilience by her continuous achievements throughout her career. She is one of the Top 20 youngest executives and rising stars of wall street. Key Take-a-ways "TPRM is one function where you have to be an expert in several different areas of risk management, strategy and operations to be successful. TPRM leaders are versatile and can provide effective leadership in many different areas due to their ability of being jack of all trades whether its cyber, regulatory, BCM or info sec, we challenge and do it all." Fun Fact "TPRM is the fun part about me; however, if I have to choose one thing outside my passion for TPRM, it would be cooking. I love cooking and find it very relaxing. I love trying different cuisines and from-scratch recipes."