Examining the Maturity of Vendor Risk Management Event
For the fifth year, the Shared Assessments Program and Protiviti have partnered in researching the maturity of Vendor Risk Management programs. The research, which looks at organizations’ maturity of their vendor risk management program, provides helpful benchmarks to evaluate programs against a comprehensive set of best practices.
In this session, we will discuss the key survey findings, including:
- The overall maturity of vendor risk management programs
- Key components of a modern vendor risk management program
- How are organizations improving vendor risk management programs
The Santa Fe Group
Gary Roboff is a Senior Advisor to The Santa Fe Group—which manages of the Shared Assessments Program—where he focuses on payments, risk management, mobile financial services, and information management. Gary has four decades of experience in financial services planning and management, including 25 years at JP Morgan Chase where he retired as Senior Vice President of Electronic Commerce. Gary has worked extensively in electronic payments, payments fraud, third part risk management, privacy and information utilization, as well as business frameworks and standards for electronic commerce applications.
Paul Kooney is a Managing Director in Protiviti’s Information Security practice, with extensive knowledge and experience in developing information security programs, performing compliance assessments, developing vendor risk management programs, and providing information security assessment services. In his over twenty years in the information technology and information security fields. In addition to his lead role in the annual Shared Assessments - Protiviti Vendor Risk Management Benchmark Study, Paul has served on the Shared Assessments Steering Committee for the last four years, contributes to many SA working groups and tools, and has been a long time Shared Assessments proponent.