Vendor-Hosted Events
The TPRA promotes the industry of third party risk, which includes events conducted by other third party risk-related groups and organizations. Check back here regularly to see our list of vendor-hosted events. If you would like to promote your next third party risk-specific event, please complete the form below.
Disclaimer: TPRA does not endorse or sponsor the products/services of one particular organization; however, we do communicate training opportunities for the benefit of the community.
Safe Security
Why Traditional TPRM Is Breaking in the AI Era
Thursday, May 28, 2026
11:00 AM ET / 8:00 AM PT
Traditional TPRM models were built for a different era — one defined by periodic assessments, manual workflows, and relatively static vendor environments.
That world no longer exists.
As organizations increasingly rely on AI vendors, SaaS ecosystems, APIs, and cloud platforms, third-party risk has become continuous, dynamic, and significantly harder to manage using legacy approaches.
Center for Financial Professionals (CeFPro)
Vendor & Third Party Risk Europe
Wednesday, June 3, 2026
London, UK
CeFPro’s 14th Annual Vendor & Third Party Risk Europe, taking place 3–4 June 2026 in the City of London, brings together senior risk leaders and industry experts to examine the evolving third-party risk landscape. The event will explore regulatory expectations, operational resilience, critical third-party oversight, and effective exit strategies, providing practical insight into how organisations are strengthening vendor risk frameworks in an increasingly complex environment.
Drata
SOC 2 for Startups: Timelines, Readiness, and Your First Report
Thursday, June 4, 2026
12:00 PM EDT | 9:00 AM PDT
Join Drata’s Ashley Hyman, VP of Customer Experience, alongside guest experts Mike DeKock, CEO of MJD Advisors, and Marc Kerrest, CEO of Whistle Performance, for a practical conversation on what SOC 2 readiness actually looks like for startups. Drawing on perspectives from customer experience, advisory, and operator leadership, this session will cover when to start, how long controls need to operate, the tradeoffs between SOC 2 Type I and Type II, and what a minimally viable posture looks like for a first report. Attendees will leave with a clearer view of realistic timelines, key milestones, and how lean teams can build trust early—without slowing down the business—while learning how platforms like Drata help make trust the default as startups scale.
Center for Financial Professionals (CeFPro)
Vendor & Third Party Risk USA
Tuesday, June 9, 2026
Ease, New York
CeFPro’s Vendor & Third Party Risk USA, taking place 9–10 June 2026 at Ease, New York, convenes senior risk leaders and industry experts to explore the evolving third-party risk landscape in the U.S. market. The event will focus on regulatory expectations, operational resilience, oversight of critical third parties, and effective exit strategies, offering practical insight to strengthen vendor and third-party risk management frameworks.
RSM
HCM from planning to go live: Best practices for implementation success
Tuesday, June 16, 2026
2 p.m. ET | 1 p.m. CT
Human capital management (HCM) implementations are complex, high‑impact initiatives that affect every employee. Yet many organizations underestimate the planning, governance and change management required to achieve long‑term value.
In this CPE‑eligible webinar, experienced and system-certified RSM implementation professionals will discuss practical best practices, common pitfalls, industry considerations and lessons learned from supporting organizations across industries in the U.S. and Canada.
Tandem
Deepfakes and the Future of Security Awareness
Thursday, June 18, 2026
2:00PM CDT
In today’s digital age, deepfakes and AI-generated content are blurring the line between what’s fake and what’s real. For financial institutions, this means it’s getting harder to tell bad actors from trusted sources, and the stakes have never been higher. Join this session to learn how deepfakes are being used in fraud and social engineering, what red flags to watch for, and why awareness training is your best defense.
Global Resilience Federation (GRF)
AI Interrupted: A Multi-Sector Tabletop Exercise
Wednesday, June 24, 2026
8:00 AM ET
AI is quickly becoming a critical dependency for customer support, software delivery and core business workflows. What happens when AI is impaired?
GRF’s Business Resilience Council is hosting a complimentary, cross-sector, virtual tabletop exercise offered on June 24 at 8am ET
Bring your security, risk, and resilience teams – and invite your peers, colleagues, partners, vendors and suppliers. Together, we need to navigate the new risks introduced by these rapid advancements.
Global Resilience Federation (GRF)
9th Annual Summit on Security & Third-Party Risk
Wednesday, October 21, 2026
Orlando, FL
Networking and Education on Critical Third-Party and Cybersecurity Issues, for Mutual Resilience
The conference features dozens of speakers on third-party risk management, cloud security, emerging cybersecurity threats, and AI/machine learning threat mitigation and management.
Attendees will gain an understanding of how some of the largest and most sophisticated organizations in the world are managing risk, and leave the conference better armed to defend their company, regardless of its size or the status of its risk mitigation program.
