top of page

Vendor-Hosted Events

The TPRA promotes the industry of third party risk, which includes events conducted by other third party risk-related groups and organizations.  Check back here regularly to see our list of vendor-hosted events.  If you would like to promote your next third party risk-specific event, please complete the form below

Disclaimer: TPRA does not endorse or sponsor the products/services of one particular organization; however, we do communicate training opportunities for the benefit of the community.

Global Resilience Federation (GRF)

AI Interrupted: A Multi-Sector Tabletop Exercise

Wednesday, June 24, 2026

8:00 AM ET

AI is quickly becoming a critical dependency for customer support, software delivery and core business workflows. What happens when AI is impaired?

GRF’s Business Resilience Council is hosting a complimentary, cross-sector, virtual tabletop exercise offered on June 24 at 8am ET

Bring your security, risk, and resilience teams – and invite your peers, colleagues, partners, vendors and suppliers. Together, we need to navigate the new risks introduced by these rapid advancements.

Bitsight

After Mythos: How Security and Risk Teams Take Action and Prove Resilience

Thursday, July 16, 2026

11:00 AM ET

Join us for a practical session for SecOps, GRC, TPRM, and cyber risk teams on connecting exposure, supply chain risk, and business impact into a resilience story leadership can trust.

Frontier AI models like Mythos are changing how quickly vulnerabilities can be found and exploited. As that window shrinks, resilience matters more than ever. Teams need to know where they are exposed, which risks of exposure matter most, and how threats across the supply chain could impact the business. For CISOs, this also raises a harder board-level question: can we prove the organization is resilient when risk is moving faster than ever?

That starts with the teams closest to the work. SecOps, GRC, TPRM, and vulnerability teams all have a piece of the story, but it’s traditionally hard to connect exposure, third-party risk, and remediation into one defensible view of resilience.

Join Greg Keshian, Chief Product Officer, and Jacob Olcott, VP of Government Affairs, for a practical discussion on how organizations are adapting in the wake of Mythos and translating that work into a resilience narrative boards, investors, and executives can understand.

You’ll walk away with a clearer understanding of how to:

  • Identify the exposures and dependencies that matter most to resilience

  • Translate exposure and supply chain risk into business impact

  • Prioritize remediation using threat activity and business context

  • Show progress, readiness, and investment needs with defensible evidence

Cloud Security Alliance (CSA)

CSA Regulated Industries for Cloud & AI Summit 2026

Thursday, July 16, 2026

11:00 AM - 3:30 PM EDT

As AI adoption and cloud modernization accelerate across energy, healthcare, government, and other highly regulated sectors, organizations face a critical question: how do you innovate at speed without compromising compliance, resilience, and trust?


The Regulated Industries for Cloud & AI Summit brings together global leaders, practitioners, and policymakers to address the real-world security, governance, and regulatory challenges shaping mission-critical environments. This free, high-impact, one-day virtual event delivers actionable insights on building secure cloud and AI ecosystems, governing AI responsibly, managing third-party and supply chain risk, and preparing for emerging global regulations.


If you are responsible for protecting critical infrastructure, sensitive data, or public trust, this is the forum to learn what’s working now—and what’s coming next.

Exiger

Human Rights in The Supply Chain: From Obligation to Operational Discipline

Thursday, July 16, 2026

London | 6:00 PM GMT

OneTrust

Beyond ISO 27001: Building the Foundation for Scalable Risk and AI Governance

Tuesday, July 21, 2026

11:00 am EST | 4:00 pm BST

ISO 27001 has become one of the most searched and adopted security frameworks globally — but for many organizations, certification is only the beginning. As cybersecurity becomes a board-level priority and AI adoption accelerates new governance challenges, organizations are realizing they need more than point-in-time compliance. They need a scalable, operational foundation for managing risk, enabling trust, and supporting business growth.

Bitsight

Doomed or Prepared? How Frontier AI Models Reshape TPRM Programs

Thursday, July 23, 2026

11:00 AM ET

Vulnerability disclosure to weaponized exploit: once measured in weeks, now in minutes. How does that impact you? When your vendors' vendors are compromised, your breach happens in 90 seconds. CISOs and GRC leaders are caught between exploding third-party risk and outdated vendor management playbooks designed for a slower threat landscape. How do you shift from annual assessments to continuous intelligence? How do you prioritize when threat actors use AI to find your crown jewels faster than your teams can? And how do you finally speak the same language across SecOps, GRC, and Procurement?

Join Emma Stevens (Threat Researcher, Bitsight) and Amanda Ravanesi [Director Product Management, Bitsight] as they map the post-Mythos TPRM landscape and arm you with a practical framework to build resilience at the speed of threat.

What You Will Learn:

  • How threat actors actually use AI in supply chain attacks—and why data triage, not initial access, is the new attack vector

  • The shift from compliance-driven vendor management to threat-informed prioritization: the Before/After playbook

  • A practical intelligence stack that turns thousands of vendors into a focused action list of critical risks

Global Resilience Federation (GRF)

9th Annual Summit on Security & Third-Party Risk

Wednesday, October 21, 2026

Orlando, FL

Networking and Education on Critical Third-Party and Cybersecurity Issues, for Mutual Resilience


The conference features dozens of speakers on third-party risk management, cloud security, emerging cybersecurity threats, and AI/machine learning threat mitigation and management.


Attendees will gain an understanding of how some of the largest and most sophisticated organizations in the world are managing risk, and leave the conference better armed to defend their company, regardless of its size or the status of its risk mitigation program.

Clapping Audience

Submit an External Event

TPRA Practitioner Members can submit upcoming events they'd like displayed on this page using the form below. Some events may also be shared via our monthly events emails and/or quarterly newsletter.


TPRA does not post on-demand/recorded events to this page. TPRA Vendor Members can submit their upcoming events through the Vendor Member Submissions form.

Submitter Information

Event Information

Event Type
bottom of page