Each year, S&P Global Market Intelligence ranks top-performing financial institutions in the following categories: community banks $3B - $10B in assets, community banks less than $3B in assets, credit unions greater than $100M in assets, and the top largest U.S. public banks by total assets. For the second year, our research team will rank the top community banks under $10B in assets in five regions: South Central, Southeast, Northeast, West, and Midwest.

Don't miss this webinar, unveiling the 2024 national bank and credit union rankings, and regional community bank rankings from S&P Global Market Intelligence.

During the 60-minute live announcement, we will release the full lists and review the methodology and data from Capital IQ Pro used to rank the community banks, credit unions and largest U.S. public banks. We’ll also hear from a select group of bank and credit union executives whose institutions made the ranking on what they feel contributed to their outperformance, followed by a live Q&A.

As AI adoption accelerates across industries, insurers and reinsurers face new and evolving risks stemming from their third-party relationships. AI-powered solutions introduce efficiency and predictive capabilities but also expose businesses to operational disruptions, compliance challenges, and cybersecurity threats. Understanding these risks—and proactively mitigating them—is now a critical component of effective Third-Party Risk Management (TPRM) and operational resilience strategies.

Presenters:

Charles Forde

UBS, AIB, Nomura, E&Y, Barclays, JP Morgan, Goldman Sachs

John Bree

Advisor, Supply Wisdom

Jenna Wells, CTPRP

Chief Operating Officer, Supply Wisdom

Strong, comprehensive third-party risk management programs create opportunities and advantages for your business - both now and in the long term. Businesses looking to create anti-fragile and resilient supply chains must adopt sustainable supplier relationship management programs that align with best practices. These programs ensure long-term brand protection and revenue assurance while aligning with rapidly evolving demands for supply chain transparency, ethical sourcing, and environmental and human rights accountability. It's no wonder the sustainable supply chain is driving notable market changes in third-party and risk management practices.  

Five Key Takeaways:  

• Recognize how the sustainable supply chain connects to your business objectives  

• Discover how resilient supply chains help reduce long-term third-party risks  

• Learn how supply chain sustainability practices protect your reputation and assure predictable revenue streams

Third party risk is broken. Why? How do we fix it? Join us in conversation with Blake Hoge, Norm Kromberg and Karina Klever, bringing together nearly 75 years of experience, including building, leading and auditing programs ranging from small to Fortune 500 companies.

When a vendor experiences an incident—whether it’s a cybersecurity breach, operational disruption, or data loss—your organization can feel the ripple effects. A strong vendor incident response process isn’t just a nice-to-have. It’s a must-have for protecting your business and customers and ensuring compliance with a growing web of legal and regulatory requirements. 

In this webinar, we’ll break down the key elements of an effective vendor incident response plan and how it relates to business continuity. Learn how to proactively prepare, respond efficiently, and collaborate with vendors to minimize risk, recover quickly, and meet critical compliance obligations.

Join us to ensure you’re ready to protect your organization by tackling vendor incidents with confidence and staying compliant in an increasingly complex regulatory landscape.

Register now to learn:

• The critical components of vendor incident response plans

• Best practices for communicating with vendors during an incident

• Steps to mitigate operational, reputational, and regulatory risks 
  How to navigate legal requirements, from notification timelines to data protection laws

• Real-world examples of incident response done right (and wrong)

This session is not eligible for CPE credit.

Apparently not everyone is aware of their DORA obligations in the US. Yes, the Digital Operational Resilience Act (DORA) applies to US-based financial services firms that have customers in the EU. DORA also applies to US-based companies that provide services to EU financial services firms.

Some folks are already aware and were ready in January and some are still trying to get there. Regardless of which category you fall into our upcoming webinar is for you. Using a phrase I heard uttered last week, “Never let a new compliance requirement go to waste” we will be discussing DORA requirements, DORA mapping to NIST CSF 2.0 and 8286 IR and most importantly how to leverage this new regulation to drive these critical imperatives:

• Integrating cyber and operational risk management through
  cyber risk quantification

• Evolving your third party risk management program to be comprehensive, holistic and financially aware

• Ensuring incident communications and response with your partners that includes financial and operational impact

• Formalizing your information sharing capabilities

Join the Business Resilience Council for the second annual Virtual Summit on Resilience & Security. The online, multi-sector event will feature speakers discussing topics relevant to all-hazards threats, including:

• Emerging security threats

• Global supply chain risk

• Risks to business infrastructure from nation-state actors

• Third-party management and resilience

• Tackling a major service outage without operational down time

Join us for this complimentary half-day event! Registration and the Call for Presentations are now live.

If the recent CrowdStrike incident taught us anything it's that we need to drastically change how we assess our third-party service providers in the face of emerging threats and vulnerabilities. There are too many vendors to assess, compounded by the increasing volume of threats we face each year. On a normal day, TPRM teams already have too much to do. When an incident like this occurs, they need to stop what they're doing and conduct an emergency assessment -- an ugly process that overburdens companies and their vendors, and typically takes weeks, if not months. It doesn't have to be that way.

Join ProcessUnity for a 50-minute webcast on Thursday, August 1 at 11:00 AM ET as we discuss Best Practices for Threat and Vulnerability Response.

The 8th annual Summit on Security & Third-Party Risk will take place at the Palms in Las Vegas, November 3-5, 2025. Each year, the conference features dozens of speakers on third-party risk management, cloud security, emerging cybersecurity threats, and AI/machine learning threat mitigation and management. Attendees will gain an understanding of how some of the largest and most sophisticated organizations in the world are managing risk and leave the conference better armed to defend their company, regardless of its size or the status of its security or risk mitigation program.