Third-Party Risk Management 101: Assess, Monitor, and Mitigate: The Core Components of TPRM

A successful and sustainable third-party risk management (TPRM) program needs to proactively uncover vendor and supplier risks before a security incident can occur – but overly complex processes to assess and mitigate risks can quickly get out of hand. So, how can you monitor risk at a scalable level?

In Part 3 of our four-part TPRM 101 webinar series, Bob Wilkinson, CEO of Cyber Marathon Solutions and former CISO at Citigroup, shares best practices for the core components to enable scale in your TPRM program, including:

• Establishing rules for risk assessment vs. triage
• Determining the appropriate scope and frequency of assessments
• Getting consistent, actionable data from assessment results
• Defining the "what, when, and how" behind your risk monitoring strategy
• Automating your TPRM program for optimal efficiency and scale

With over 30 years of real-world experience architecting and implementing risk management programs at Fortune 100 companies, Bob is the ideal guide for assessing and addressing risks in your TPRM program.

Catch up on this series:

• Part 1: Third-Party Risk Management 101: The Foundations for Building a Successful TPRM Program
• Part 2: 5 Ways to Make TPRM Part of Your Overall Risk Management Strategy