Skip to main content

On-demand webinar coming soon...

Blog

What is Third-Party Risk Management?

A graphic of a green gradient background.

What is Third-Party Risk Management?

Third-party risk management (TPRM) is a form of risk management that focuses on identifying and reducing risks relating to the use of third parties (sometimes referred to as vendors, suppliers, partners, contractors, or service providers). 

The discipline is designed to give organizations an understanding of the third parties they use, how they use them, and what safeguards their third parties have in place. The scope and requirements of a TPRM program are dependent on the organization and can vary widely depending on industry, regulatory guidance, and other factors. Still, many TPRM best practices are universal and applicable to every business or organization. 

While exact definitions may vary, the term “third-party risk management” is sometimes used interchangeably with other common industry terms, such as  vendor risk management (VRM), vendor management, supplier risk management, or supply chain risk management. However, TPRM is often thought of as the overarching discipline that encompasses all types of third parties and all types of risks. 

 

Why is Third-Party Risk Management Important?

While third-party risk isn’t a new concept, upticks in breaches across industries and a greater reliance on outsourcing have brought the discipline into the forefront like never before. Disruptive events, have impacted almost every business and their third parties – no matter the size, location, or industry. In addition, data breaches or cyber security incidents are common. In in 2021, the impact that third parties have on business resilience was highlighted through outages and other third-party incidents. Some of the ways you can be impacted are:

  • Internal outages and lapses in operational capabilities 
  • External outages affecting areas across the supply chain 
  • Vendor outages that open your organization to supply chain vulnerabilities  
  • Operational shifts that affect data gathering, storage, and security 

Most modern organizations rely on third parties to keep operations running smoothly. So, when your third parties, vendors, or suppliers can’t deliver, there can be devastating and long-lasting impacts. 

For example, you may rely on a service provider such as Amazon Web Services (AWS) to host a website or cloud application. Should AWS go offline, your website or application also goes offline. An additional example could be the reliance on a third party to ship goods. If the shipping company’s drivers go on strike, that can delay expected delivery times and lead to customer cancellations and distrust, which will negatively impact your organization’s bottom line and reputation. 

Outsourcing is a necessary component of running a modern business. It not only saves a business money, but it’s a simple way to take advantage of expertise that an organization might not have in house. The downside is that if a proper TPRM program is not in place, relying on third parties can leave your business vulnerable.

 

What are the Top TPRM Best Practices?

There are endless TPRM best practices that can help you build a better program, regardless of whether you’re just beginning to make TPRM a priority, or you want to understand where your existing program could be improved. We’ve outlined what we believe are the 3 most critical best practices that are applicable to nearly every company. 

 

1) Prioritize Your Vendor Inventory

Not all vendors are equally important, which is why it is critical to determine which third parties matter most. To improve efficiency in your TPRM program, segment your vendors into criticality tiers. 

Most companies segment vendors into three groups: 

  • Tier 3: Low risk, low criticality 
  • Tier 2: Medium risk, medium criticality 
  • Tier 1: High risk, high criticality

In practice, organizations will focus their time and resources on tier 1 vendors first, as they require more stringent due diligence and evidence collection. Typically, tier 1 vendors are subject to the most in-depth assessments, which often includes on-site assessment validation. 

Many times, especially during initial evaluation, these tiers are calculated based on the inherent risk of the third party. Inherent risk scores are generated based on industry benchmarks or basic business context, such as whether or not you will be: 

  • Sharing proprietary or confidential business information with the vendor​ 
  • Sharing personal data with the vendor​ 
  • Sharing sensitive personal data with the vendor​ 
  • Sharing personal data across borders​ 
  • Serving a critical business functions​ 

Additionally, impact of the vendor can be a determining factor. If a third party can’t deliver their service, how would that impact your operations? When there is significant disruption, the risk of the vendor will inevitably be higher. Determine this impact by considering: 

  • The impact of unauthorized disclosure of information​ 
  • The impact of unauthorized modification or destruction of information​ 
  • The impact of disruption of access to the vendor/information​ 

Another way to tier vendors is by grouping based on contract value. Big-budget vendors may automatically be segmented as a tier 1 vendor due to the high risk based solely on the value of the contract. 

 

2) Leverage Automation Wherever Possible

Efficiencies emerge when operations are consistent and repeatable. There are a number of areas in the TPRM lifecycle where automation is ideal. These areas include, but are not limited to: 

  • Intaking and onboarding new vendors.  Automatically add vendors to your inventory using an intake form or via integration with contract management or other systems. 
  • Calculating inherent risk and tiering vendors. During intake, collect basic business context to determine a vendor’s inherent risk, and then automatically prioritize vendors posing the highest risk. 
  • Assigning risk owners and mitigation tasks. When a vendor risk is flagged, route the risk to the correct individual and include a checklist of mitigation action items. 
  • Triggering vendor performance reviews. Set up automation triggers to conduct a review of the vendor each year, and if the vendor fails the review, trigger off-boarding actions. 
  • Triggering vendor reassessment. Send a reassessment based on contract expiration dates and save the previous year’s assessment answers so the vendor doesn’t have to start from scratch. 
  • Sending notifications and other alerts. When a new risk is flagged or a new vendor is onboarded, send an email or alert the relevant stakeholder through an integration with an existing system. 
  • Scheduling and running reports. Set up automated reports that run on a daily, weekly, or monthly basis and automatically share them with the right person. 

Every TPRM program is different, so start by looking internally at the repeatable processes that are ripe for automation. From there, start small and take practical steps to automate key tasks. Over time, these small automations will compound, saving your team valuable time, money, and resources. 

 

3) Think Beyond Cybersecurity Risks 

When considering a third-party risk or vendor risk management program, many organizations immediately think about cybersecurity risks. But TPRM entails so much more. While starting small and focusing only on cybersecurity risks is a good first step, there are other types of risks that need to be prioritized. These risks include: 

  • Reputational risks 
  • Geographical risks 
  • Geopolitical risks 
  • Strategic risks 
  • Financial risks 
  • Operational risks 
  • Privacy risks 
  • Compliance risks 
  • Ethical risks 
  • Business continuity risks 
  • Performance risks 
  • 4th party risks 
  • Credit risks 
  • Environmental risks 

The key takeaway here is that understanding all relevant types of risk (and not just cybersecurity) is imperative to building a world-class TPRM program. 

 

What is the Third-Party Risk Management Lifecycle?

The third-party risk management lifecycle is a series of steps that outlines a typical relationship with a third party. TPRM is sometimes referred to as “third-party relationship management.” This term better articulates the ongoing nature of vendor engagements. Typically, the TPRM lifecycle, is broken down into several stages. These stages include: 

  1. Vendor identification
  2. Evaluation & selection
  3. Risk assessment
  4. Risk mitigation
  5. Contracting and procurement
  6. Reporting and Record-keeping
  7. Ongoing monitoring
  8. Vendor off-boarding

 

Phase 1: Third-Party Identification

There are many ways to identify the third parties your organization is currently working with, as well as ways to identify new third parties your organization wants to use. 

To identify vendors already in use and build a vendor inventory, organizations take multiple approaches, which include: 

  • Using existing information. Organizations often consolidate vendor information from spreadsheets and other sources when rolling out third-party risk software. 
  • Integrating with existing technologies. Technologies that are in use often contain detailed vendor information, such as CMDBs, SSO providers, contracts, procurement, and other systems. Organizations will often plug into these sources to centralize their inventory in a single software solution. 
  • Conducting assessments or interviews. A short assessment to business owners across the company, such as marketing, HR, finance, sales, research and development, and other departments can help you uncover the tools in use at your organization. 

To identify new third parties, organizations will often leverage a self-service portal as part of their third-party risk management program. With a self-service portal, business owners can build their inventory. Share the portal with your business by linking to it from your intranet or SharePoint. Self-service portals also help gather preliminary information about the third party, such as: 

  • Personal information involved 
  • Hosting information 
  • Privacy Shield and 
  • other certification 
  • Business context 
  • Scope of engagement 
  • Vendor Name 
  • Expected procurement date 
  • Business purpose 
  • Primary vendor contact (email, phone, address) 
  • Data type involved
  • Prior security reviews or 
  • Certifications, if applicable 

Using this information, you can classify third parties based on the inherent risk that they pose to your organization. 

 

Phase 2: Evaluation and Selection

During the evaluation and selection phase, organizations consider RFPs and choose the vendor they want to use. This decision is made using a number of factors that are unique to the business and its specific needs. 

 

Phase 3: Risk Assessment

Vendor risk assessments take time and are resource-intensive, which is why many organizations are using a third-party risk exchange to access pre-completed assessments. Other common methods include using spreadsheets or assessment automation software. Either way, the primary goal of understanding the risks associated with the vendor is the same. 

Common standards used for assessing vendors include: 

As well as industry-specific standards, such as: 

 

Phase 4: Risk Mitigation

After conducting an assessment, risks can be calculated, and mitigation can begin. Common risk mitigation workflows include the following stages: 

  • At this stage, risks are flagged and given a risk level or score. 
  • During the evaluation phase, organizations will determine if the risk is acceptable within their defined risk appetite. 
  • When treatment occurs, a risk owner must validate that the required controls are in place to reduce the risk to the desired residual risk level. 
  • At this phase, organizations monitor risks for any events that may increase the risk level, such as a data breach  

 

Phase 5: Contracting and Procurement

Sometimes done in parallel with risk mitigation, the contracting and procurement stage is critical from a third-party risk perspective. Contracts often contain details that fall outside the realm of TPRM. Still, there are key provisions, clauses, and terms that TPRM teams should look out for when reviewing vendor contracts. 

Some of these include: 

  • Defined Scope of Services or Products 
  • Price and Payment Terms 
  • Term and Termination Clauses 
  • Intellectual Property Ownership Clause 
  • Deliverables or Services Clause 
  • Representation and Warranties 
  • Confidentiality Clause 
  • Disclaimers or Indemnification 
  • Limitation of Liability 
  • Insurance 
  • Relationship Clause 
  • Data Processing Agreement 
  • 4th Party or Subprocessor Change Clauses 
  • Compliance Clause 
  • Data Protection Agreement 
  • Service Level Agreements (SLAs), Product Performance, Response Time 

Home in on these key terms to report on requirements in a structured format. Simply determine if key clauses are adequate, inadequate, or missing. 

 

Phase 6: Reporting and Recordkeeping

Building a strong TPRM program requires organizations to maintain compliance. This step is often overlooked. Maintaining detailed records in spreadsheets is nearly impossible at scale, which is why many organizations implement TPRM software. With auditable recordkeeping in place, it becomes much easier to report on critical aspects of your program to identify areas for improvement. 

In practice, a sample reporting dashboard may include: 

  • Total supplier count 
  • Suppliers sorted by risk level 
  • Status on all supplier risk assessments 
  • Number of suppliers with expiring or expired contracts 
  • Risks grouped by level (high, medium, low) 
  • Risks by stage within the risk mitigation workflow 
  • Risks to your parent organization and risks to your subsidiaries 
  • Risk history over time 

 

Phase 7: Ongoing Monitoring

An assessment is a “moment-in-time” look into a vendor’s risks; however, engagements with third parties do not end there – or even after risk mitigation. Ongoing vendor monitoring throughout the life of a third-party relationship is critical, as is adapting when new issues arise. 

For example, new regulations, negative news stories, high-profile data breaches, and evolving usage of a vendor, may all impact the risks associated with your third parties. Some key risk-changing events to monitor include: 

  • Mergers, acquisitions, or divestitures 
  • Internal process changes 
  • Negative news or unethical behavior 
  • Natural disasters and other business continuity triggering events 
  • Product releases 
  • Contract changes 
  • Industry or regulatory developments 
  • Financial viability or cash flow 
  • Employee reduction 
     

Phase 8: Vendor Offboarding

A thorough offboarding procedure is critical, both for security purposes and recordkeeping requirements. Many organizations have developed an offboarding checklist for vendors, which can consist of both an assessment sent internally and externally to confirm that all appropriate measures were taken. Critical too is the ability to maintain detailed evidence trail of these activities to demonstrate compliance in the event of regulatory inquiry or audit. 

 

Which Department Owns TPRM?

There is no one-size-fits-all approach to third-party risk management. All companies are different, and as a result, there is no set-in-stone department that owns vendor risk responsibilities. Some mature organizations may have a third-party risk or vendor management team, but many organizations do not. As a result, common job titles and departments that “own” third-party risk include: 

  • Chief Information Security Officer (CISO) 
  • Chief Procurement Officer (CPO) 
  • Chief Information Officer (CIO) 
  • Chief Privacy Officer (CPO) 
  • Information Technology (IT) 
  • Sourcing and Procurement 
  • Information Security 
  • Risk and Compliance 
  • Supply Chain Manager 
  • Third-Party Risk Manager 
  • Vendor Risk Manager 
  • Vendor Management 
  • Contract Manager 

The list above is by no means comprehensive; however, the diverse variety of titles and departments can shed some light on the diverse approaches taken to third-party risk management. 

Ultimately, these stakeholders and departments must work together to manage vendors throughout the third-party lifecycle. As such, TPRM often extends into many departments and across many different roles. 

 

What are the benefits of third-party management software? 

With third-party management software, your organization can develop and scale a successful TPRM management program that adds value to your bottom line. The return on investment (ROI) is significant when leveraging the automation opportunities that purpose-built software provides. The biggest benefits include: 

  • Improved security 
  • Improved customer trust 
  • Increased time savings 
  • Increased cost savings 
  • Less redundant work 
  • Better data visibility 
  • Faster vendor onboarding 
  • Simpler assessments 
  • Better reporting capabilities 
  • Easier audits 
  • Less risks 
  • Better vendor performance 
  • Less spreadsheets 

 

How can OneTrust help?

“The OneTrust platform leverages expertise in Tech Risk & Compliance, specializing in Third-Party Management, Privacy Automation, Incident Management, and many other categories to deliver an immersive security and privacy management experience. Reduce your vendor, supplier, and third-party risks with OneTrust Third-Party Management software. The software enables you to run compliance checks and screen vendors. Additionally, our software empowers organizations to conduct vendor risk assessments and mitigate risks through highly customizable workflow automation. The OneTrust Third-Party Risk Exchange enables businesses to access risk analytics and control gap reports on vendors, and provides vendors with an opportunity to centralize their compliance details and promote them to thousands of OneTrust customers to easily share.”  


You may also like

Webinar

Third-Party Risk

Unpacking global regulatory frameworks to enhance third-party operational resilience

Register for this OneTrust webinar to learn about the relevant resilience focused requirements of DORA, NIS 2, and other global regulations.

December 11, 2024

Learn more

Webinar

Third-Party Risk

Unpacking global regulatory frameworks to enhance third-party operational resilience

Register for this OneTrust webinar to learn about the relevant resilience focused requirements of DORA, NIS 2, and other global regulations.

December 11, 2024

Learn more

Webinar

Technology Risk & Compliance

Understanding the NIS 2 Directive: Compliance insights and best practices

This DataGuidance webinar explores the latest and expected developments in the implementation of the NIS 2 Directive, focusing on practical compliance strategies to ensure your organization is prepared.

December 04, 2024

Learn more

Webinar

Technology Risk & Compliance

Understanding the NIS 2 Directive: Compliance insights and best practices

This DataGuidance webinar explores the latest and expected developments in the implementation of the NIS 2 Directive, focusing on practical compliance strategies to ensure your organization is prepared.

December 04, 2024

Learn more

Seminario web

GRC y garantía de seguridad

Cumplimiento de NIS2: cómo resolver los retos de la normativa con una demostración práctica

Acompáñanos en esta sesión dónde repasaremos los principales requisitos de la normativa NIS2 y su impacto. Además, podrás asistir a una demostración práctica y conocer cómo OneTrust te ayuda a resolver los retos de gobernanza, gestión de riesgos y terceros, gestión de incidentes y cumplimiento asociados a la normativa.

noviembre 26, 2024

Learn more

Seminario web

GRC y garantía de seguridad

Cumplimiento de NIS2: cómo resolver los retos de la normativa con una demostración práctica

Acompáñanos en esta sesión dónde repasaremos los principales requisitos de la normativa NIS2 y su impacto. Además, podrás asistir a una demostración práctica y conocer cómo OneTrust te ayuda a resolver los retos de gobernanza, gestión de riesgos y terceros, gestión de incidentes y cumplimiento asociados a la normativa.

noviembre 26, 2024

Learn more

Evento presencial

Trust intelligence

OneTrust End of Year Lisboa

Pensamos que este é um ótimo momento para estarmos com vocês e, por isso, estamos muito felizes em anunciar a 1ª edição do OneTrust Day Portugal, um evento exclusivo para todo o país, onde vamos falar sobre os temas mais atuais e relevantes no mundo da Privacidade, Inteligência Artificial, Consentimento e Preferências e Gestão de Riscos de Terceiros.

novembro 21, 2024

Learn more

Evento presencial

Trust intelligence

OneTrust End of Year Lisboa

Pensamos que este é um ótimo momento para estarmos com vocês e, por isso, estamos muito felizes em anunciar a 1ª edição do OneTrust Day Portugal, um evento exclusivo para todo o país, onde vamos falar sobre os temas mais atuais e relevantes no mundo da Privacidade, Inteligência Artificial, Consentimento e Preferências e Gestão de Riscos de Terceiros.

novembro 21, 2024

Learn more

Webinar

Third-Party Risk

Live Demo: Building a more resilient Third-Party Management program

Join for a live demo of new features from OneTrust’s Fall release and understand how OneTrust Third-Party Management can revolutionize your third-party risk management approach.

November 19, 2024

Learn more

Webinar

Third-Party Risk

Live Demo: Building a more resilient Third-Party Management program

Join for a live demo of new features from OneTrust’s Fall release and understand how OneTrust Third-Party Management can revolutionize your third-party risk management approach.

November 19, 2024

Learn more

Webinar

Third-Party Risk

Bill S-211: Will you be ready by May 31?

In this webinar, our experts will discuss the Canadian regulation and others like it globally, while providing actionable insights into building a robust and mature Third-party program.

November 07, 2024

Learn more

Webinar

Third-Party Risk

Bill S-211: Will you be ready by May 31?

In this webinar, our experts will discuss the Canadian regulation and others like it globally, while providing actionable insights into building a robust and mature Third-party program.

November 07, 2024

Learn more

Blog

Third-Party Risk

Tackling IT security risks for banks in South Africa

Join our OneTrust webinar on tackling IT security risks for banks in South Africa. Explore strategies for safeguarding sensitive data, ensuring POPIA compliance, and managing cyber threats. Gain actionable insights to strengthen your security posture and build customer trust.

October 31, 2024

Learn more

Blog

Third-Party Risk

Tackling IT security risks for banks in South Africa

Join our OneTrust webinar on tackling IT security risks for banks in South Africa. Explore strategies for safeguarding sensitive data, ensuring POPIA compliance, and managing cyber threats. Gain actionable insights to strengthen your security posture and build customer trust.

October 31, 2024

Learn more

Webinar

Privacy Automation

Build resiliency and operationalize compliance with OneTrust: Fall product release recap, 2024

Join our upcoming product release webinar to explore how these new capabilities can help your organization navigate complex frameworks, streamline third-party management, and accelerate AI and data innovation.

October 22, 2024

Learn more

Webinar

Privacy Automation

Build resiliency and operationalize compliance with OneTrust: Fall product release recap, 2024

Join our upcoming product release webinar to explore how these new capabilities can help your organization navigate complex frameworks, streamline third-party management, and accelerate AI and data innovation.

October 22, 2024

Learn more

Webinar

Third-Party Risk

Live Demo EMEA: Building a robust third-party risk management program with OneTrust

Join to explore how OneTrust's TPRM solution can revolutionize your third-party risk management approach. We will cover best practices for implementing and leveraging the software to minimize risks.

October 10, 2024

Learn more

Webinar

Third-Party Risk

Live Demo EMEA: Building a robust third-party risk management program with OneTrust

Join to explore how OneTrust's TPRM solution can revolutionize your third-party risk management approach. We will cover best practices for implementing and leveraging the software to minimize risks.

October 10, 2024

Learn more

eBook

Third-Party Risk

Simplifying vendor risk management

Streamline third-party relationships and avoid common mistakes in the process.

October 03, 2024

Learn more

eBook

Third-Party Risk

Simplifying vendor risk management

Streamline third-party relationships and avoid common mistakes in the process.

October 03, 2024

Learn more

Checklist

Third-Party Risk

Essential checklist for simplifying third-party risk management

Third-party management doesn’t have to be a complicated process for your business.

October 02, 2024

Learn more

Checklist

Third-Party Risk

Essential checklist for simplifying third-party risk management

Third-party management doesn’t have to be a complicated process for your business.

October 02, 2024

Learn more

Infographic

Third-Party Risk

Navigating risk in financial services with third-party management

Working with third parties introduces privacy and security risks, making compliance and business growth a balancing act.

October 01, 2024

Learn more

Infographic

Third-Party Risk

Navigating risk in financial services with third-party management

Working with third parties introduces privacy and security risks, making compliance and business growth a balancing act.

October 01, 2024

Learn more

Infographic

Third-Party Risk

Manufacturing risk: Managing third parties in the supply chain

Third-party management keeps manufacturing operations running smoothly by verifying vendor and supplier compliance with regulations.

September 30, 2024

Learn more

Infographic

Third-Party Risk

Manufacturing risk: Managing third parties in the supply chain

Third-party management keeps manufacturing operations running smoothly by verifying vendor and supplier compliance with regulations.

September 30, 2024

Learn more

eBook

Third-Party Risk

The complete guide to third-party management

It’s imperative for security teams to implement a holistic approach to third-party management.

September 27, 2024

Learn more

eBook

Third-Party Risk

The complete guide to third-party management

It’s imperative for security teams to implement a holistic approach to third-party management.

September 27, 2024

Learn more

Blog

Third-Party Due Diligence

Third-Party Management is Key to Business Resilience | Blog | OneTrust

Overseeing business relationships isn’t just about controlling risk — companies must understand how to manage third parties holistically.

Jason Koestenblatt

September 27, 2024

Learn more

Blog

Third-Party Due Diligence

Third-Party Management is Key to Business Resilience | Blog | OneTrust

Overseeing business relationships isn’t just about controlling risk — companies must understand how to manage third parties holistically.

Jason Koestenblatt

September 27, 2024

Learn more

Webinar

Third-Party Risk

Strengthen your third-party ecosystem: Strategies to combat modern slavery, anti-bribery, and corruption

Join our upcoming webinar to learn how to navigate the complexities of managing modern slavery, anti-bribery, and corruption within your third-party ecosystem.

September 26, 2024

Learn more

Webinar

Third-Party Risk

Strengthen your third-party ecosystem: Strategies to combat modern slavery, anti-bribery, and corruption

Join our upcoming webinar to learn how to navigate the complexities of managing modern slavery, anti-bribery, and corruption within your third-party ecosystem.

September 26, 2024

Learn more

Webinar

Third-Party Risk

PDPL and third-party risk

Join us in a webinar where we will discuss PDPL, third-party risk, and compliance best practices. Learn how you can automate and simplify your third-party management program with OneTrust.

September 19, 2024

Learn more

Webinar

Third-Party Risk

PDPL and third-party risk

Join us in a webinar where we will discuss PDPL, third-party risk, and compliance best practices. Learn how you can automate and simplify your third-party management program with OneTrust.

September 19, 2024

Learn more

Webinar

Third-Party Risk

APAC - Third-party risk management and due diligence: What’s the difference and why does it matter?​

Join this APAC webinar to learn the unique competencies of third-party risk and due diligence programs and examine when and how to align them to maximize the effectiveness of each.

September 18, 2024

Learn more

Webinar

Third-Party Risk

APAC - Third-party risk management and due diligence: What’s the difference and why does it matter?​

Join this APAC webinar to learn the unique competencies of third-party risk and due diligence programs and examine when and how to align them to maximize the effectiveness of each.

September 18, 2024

Learn more

Webinar

Third-Party Risk

Navigating the intersection: Third-party risk management in South Africa's evolving data landscape

Amidst South Africa's dynamic AI terrain and evolving data privacy regulations like POPIA, mastering third-party risk management is paramount. This session explores the balance between AI innovation and data protection.

September 18, 2024

Learn more

Webinar

Third-Party Risk

Navigating the intersection: Third-party risk management in South Africa's evolving data landscape

Amidst South Africa's dynamic AI terrain and evolving data privacy regulations like POPIA, mastering third-party risk management is paramount. This session explores the balance between AI innovation and data protection.

September 18, 2024

Learn more

Blog

Third-Party Risk

How to manage and measure third-party risk across your business 

Learn how to empower your compliance program with a unified third-party management program.

Jason Koestenblatt

September 11, 2024 5 min read

Learn more

Blog

Third-Party Risk

How to manage and measure third-party risk across your business 

Learn how to empower your compliance program with a unified third-party management program.

Jason Koestenblatt

September 11, 2024 5 min read

Learn more

E-Book

Drittparteienrisiken

Leitfaden für das Drittparteienrisikomanagement

Dieser Leitfaden zum Risikomanagement für Dritte gibt Ihnen einen Überblick über die Voraussetzungen für den Aufbau eines erfolgreichen Risikomanagementprogramms für Dritte.

September 03, 2024

Learn more

E-Book

Drittparteienrisiken

Leitfaden für das Drittparteienrisikomanagement

Dieser Leitfaden zum Risikomanagement für Dritte gibt Ihnen einen Überblick über die Voraussetzungen für den Aufbau eines erfolgreichen Risikomanagementprogramms für Dritte.

September 03, 2024

Learn more

Webinar

Third-Party Risk

Third-Party operational risk: Shifting from reliance to resilience

Join this webinar to learn best practices for building a resilient third-party ecosystem and maintaining operational continuity in the face of unforeseen challenges.

August 15, 2024

Learn more

Webinar

Third-Party Risk

Third-Party operational risk: Shifting from reliance to resilience

Join this webinar to learn best practices for building a resilient third-party ecosystem and maintaining operational continuity in the face of unforeseen challenges.

August 15, 2024

Learn more

eBook

Third-Party Risk

Deploying third-party management to navigate risk across industries

Download this eBook to explore third-party management across industries and key considerations before bringing this approach organization-wide.

August 06, 2024

Learn more

eBook

Third-Party Risk

Deploying third-party management to navigate risk across industries

Download this eBook to explore third-party management across industries and key considerations before bringing this approach organization-wide.

August 06, 2024

Learn more

Blog

Third-Party Risk

Preparing for DORA: Updated rules for the EU resilience regulation

Explore DORA's goals, the new requirements, and how organizations can prepare now to meet the framework ahead of the January 2025 deadline.

Hannah Middleton

August 02, 2024 2 min read

Learn more

Blog

Third-Party Risk

Preparing for DORA: Updated rules for the EU resilience regulation

Explore DORA's goals, the new requirements, and how organizations can prepare now to meet the framework ahead of the January 2025 deadline.

Hannah Middleton

August 02, 2024 2 min read

Learn more

Webinar

Third-Party Risk

Third-Party AI: Procurement and risk management best practices

As innovation teams race to integrate AI into their products and services, new challenges arise for development teams leveraging third-party models. Join the webinar to gain insights on how to navigate AI vendors while mitigating third-party risks.

July 25, 2024

Learn more

Webinar

Third-Party Risk

Third-Party AI: Procurement and risk management best practices

As innovation teams race to integrate AI into their products and services, new challenges arise for development teams leveraging third-party models. Join the webinar to gain insights on how to navigate AI vendors while mitigating third-party risks.

July 25, 2024

Learn more

Blog

Third-Party Risk

CrowdStrike outage highlights third-party risk 

See our key insights and discover why robust risk management across third parties, fourth parties, and beyond is crucial.

Hannah Middleton

July 25, 2024 3 min read

Learn more

Blog

Third-Party Risk

CrowdStrike outage highlights third-party risk 

See our key insights and discover why robust risk management across third parties, fourth parties, and beyond is crucial.

Hannah Middleton

July 25, 2024 3 min read

Learn more

Webinar

Privacy Management

New European cyber laws: What you need to know

The EU has adopted several new Cyber Laws that will impact many businesses and will come into force over the next few months (in October in the case of NISD2) and require actions now. Join the webinar to learn about the latest cyber developments.

July 23, 2024

Learn more

Webinar

Privacy Management

New European cyber laws: What you need to know

The EU has adopted several new Cyber Laws that will impact many businesses and will come into force over the next few months (in October in the case of NISD2) and require actions now. Join the webinar to learn about the latest cyber developments.

July 23, 2024

Learn more

Webinar

Third-Party Risk

Master Third-Party Risk Management with OneTrust: ​Live Demo and Secrets to Success

Join this free demo session to learn the ins an outs of OneTrust’s Third-Party Management solution.

July 02, 2024

Learn more

Evento presencial

Trust intelligence

OneTrust Day Portugal

Pensamos que este é um ótimo momento para estarmos com vocês e, por isso, estamos muito felizes em anunciar a 1ª edição do OneTrust Day Portugal, um evento exclusivo para todo o país, onde vamos falar sobre os temas mais atuais e relevantes no mundo da Privacidade, Inteligência Artificial, Consentimento e Preferências e Gestão de Riscos de Terceiros.

junho 27, 2024

Learn more

Evento presencial

Trust intelligence

OneTrust Day Portugal

Pensamos que este é um ótimo momento para estarmos com vocês e, por isso, estamos muito felizes em anunciar a 1ª edição do OneTrust Day Portugal, um evento exclusivo para todo o país, onde vamos falar sobre os temas mais atuais e relevantes no mundo da Privacidade, Inteligência Artificial, Consentimento e Preferências e Gestão de Riscos de Terceiros.

junho 27, 2024

Learn more

Webinar

Third-Party Risk

Protecting your reputation: 3 ways a unified third-party management program can help

This webinar will show you how to develop strategies for assessing reputational risks as it relates to third parties and the impact of third-party relationships.

June 12, 2024

Learn more

Webinar

Third-Party Risk

Protecting your reputation: 3 ways a unified third-party management program can help

This webinar will show you how to develop strategies for assessing reputational risks as it relates to third parties and the impact of third-party relationships.

June 12, 2024

Learn more

Webinar

Third-Party Risk

Third-Party risk management and due diligence: What's the difference and why does it matter?

In this webinar, we’ll discuss the unique competencies of third-party risk and due diligence programs and examine when and how to align them.

May 08, 2024

Learn more

Webinar

Third-Party Risk

Third-Party risk management and due diligence: What's the difference and why does it matter?

In this webinar, we’ll discuss the unique competencies of third-party risk and due diligence programs and examine when and how to align them.

May 08, 2024

Learn more

Infographic

Third-Party Risk

Streamline compliance with the Digital Operational Resilience Act (DORA)

Download our infographic to learn about the new DORA regulation, who needs to comply, and how OneTrust can help streamline the process.

April 29, 2024

Learn more

Blog

Third-Party Risk

Navigating the Digital Operational Resilience Act (DORA) with OneTrust

Read our article on the Digital Operational Resilience Act (DORA) and how organizations can effectively manage ICT risk and third-party risk to ensure compliance

Katrina Dalao

April 29, 2024 5 min read

Learn more

Blog

Third-Party Risk

Navigating the Digital Operational Resilience Act (DORA) with OneTrust

Read our article on the Digital Operational Resilience Act (DORA) and how organizations can effectively manage ICT risk and third-party risk to ensure compliance

Katrina Dalao

April 29, 2024 5 min read

Learn more

Infographic

Third-Party Risk

Streamline compliance with the Digital Operational Resilience Act (DORA)

Download our infographic to learn about the new DORA regulation, who needs to comply, and how OneTrust can help streamline the process.

April 29, 2024

Learn more

Blog

Rischi da parte di terzi

Esplora il regolamento sulla resilienza operativa digitale (DORA) con OneTrust

Leggi il nostro articolo sul regolamento sulla resilienza operativa digitale (Digital Operational Resilience Act, DORA) e su come le aziende possono gestire efficacemente i rischi legati alle TIC e alle terze parti per garantire la conformità

Katrina Dalao

aprile 29, 2024 5 min read

Learn more

Blog

Rischi da parte di terzi

Esplora il regolamento sulla resilienza operativa digitale (DORA) con OneTrust

Leggi il nostro articolo sul regolamento sulla resilienza operativa digitale (Digital Operational Resilience Act, DORA) e su come le aziende possono gestire efficacemente i rischi legati alle TIC e alle terze parti per garantire la conformità

Katrina Dalao

aprile 29, 2024 5 min read

Learn more

Blog

Riesgos de terceros

Explorando el Reglamento sobre resiliencia operativa digital (DORA) con OneTrust

Consulta nuestro artículo sobre el Reglamento sobre resiliencia operativa digital (DORA) y cómo las organizaciones pueden gestionar de forma eficaz el riesgo de las TIC y el riesgo de terceros con objeto de garantizar el cumplimiento normativo

Katrina Dalao

abril 29, 2024 5 min read

Learn more

Blog

Riesgos de terceros

Explorando el Reglamento sobre resiliencia operativa digital (DORA) con OneTrust

Consulta nuestro artículo sobre el Reglamento sobre resiliencia operativa digital (DORA) y cómo las organizaciones pueden gestionar de forma eficaz el riesgo de las TIC y el riesgo de terceros con objeto de garantizar el cumplimiento normativo

Katrina Dalao

abril 29, 2024 5 min read

Learn more

Webinaire

Gestion des risques tiers

Les Top challenges en matière de Gestion des Risques Tiers

Webinar : comment relever les défis de la gestion des risques tiers tels que : la complexité croissante des réseaux de fournisseurs, la conformité réglementaire changeante et la nécessité de gérer efficacement les relations avec les tiers pour atténuer les risques et maintenir la continuité des activités.

avril 25, 2024

Learn more

Webinaire

Gestion des risques tiers

Les Top challenges en matière de Gestion des Risques Tiers

Webinar : comment relever les défis de la gestion des risques tiers tels que : la complexité croissante des réseaux de fournisseurs, la conformité réglementaire changeante et la nécessité de gérer efficacement les relations avec les tiers pour atténuer les risques et maintenir la continuité des activités.

avril 25, 2024

Learn more

Seminario web

Riesgos de terceros

DORA y sus estándares: una sesión práctica con OneTrust y Deloitte

Acompáñanos el próximo 24 de abril a esta sesión y descubre como OneTrust y Deloitte facilitan la adopción de DORA y sus estándares asociados en una sesión práctica donde veremos desde la Gestión de Riesgos y la Gestión de Incidentes, hasta el Registro de Información de la cadena de suministro.

abril 24, 2024

Learn more

Seminario web

Riesgos de terceros

DORA y sus estándares: una sesión práctica con OneTrust y Deloitte

Acompáñanos el próximo 24 de abril a esta sesión y descubre como OneTrust y Deloitte facilitan la adopción de DORA y sus estándares asociados en una sesión práctica donde veremos desde la Gestión de Riesgos y la Gestión de Incidentes, hasta el Registro de Información de la cadena de suministro.

abril 24, 2024

Learn more

Webinar

Third-Party Risk

Live demo EMEA: Building your third-party risk management program with OneTrust

Join our webinar to learn how you can build an well-rounded Third-Party Risk Management Program that works for your organisation

April 23, 2024

Learn more

Webinar

Third-Party Risk

5 Best practices for increasing resilience when working with third parties webinar

Learn how to leverage financial, operations, compliance, ESG, and cyber scores to drive resilience insights and detect possible supply chain disruptions.

April 18, 2024

Learn more

Webinar

Third-Party Risk

5 Best practices for increasing resilience when working with third parties webinar

Learn how to leverage financial, operations, compliance, ESG, and cyber scores to drive resilience insights and detect possible supply chain disruptions.

April 18, 2024

Learn more

Infographie

Gestion des risques tiers

4 enjeux majeurs pour les RSSI

Quels sont les principaux défis auxquels les RSSI sont confrontés ? Téléchargez cette infographie pour connaître l'avis d'experts de tous les secteurs d'activité.

avril 16, 2024

Learn more

Infographie

Gestion des risques tiers

4 enjeux majeurs pour les RSSI

Quels sont les principaux défis auxquels les RSSI sont confrontés ? Téléchargez cette infographie pour connaître l'avis d'experts de tous les secteurs d'activité.

avril 16, 2024

Learn more

Video

Third-Party Risk

OneTrust third-party management demo video

Watch this demo video to learn how OneTrust third-party management helps organizations create resilient, secure, and scalable third-party ecosystems. 

April 04, 2024

Learn more

Video

Third-Party Risk

OneTrust third-party management demo video

Watch this demo video to learn how OneTrust third-party management helps organizations create resilient, secure, and scalable third-party ecosystems. 

April 04, 2024

Learn more

Checklist

Third-Party Risk

6 steps to effective third-party risk management

See the path to managing third-party risk effectively with a checklist that outlines the six steps for a sound TPRM program.

March 29, 2024

Learn more

Checklist

Third-Party Risk

6 steps to effective third-party risk management

See the path to managing third-party risk effectively with a checklist that outlines the six steps for a sound TPRM program.

March 29, 2024

Learn more

Webinar

Third-Party Risk

TPRM privacy compliance: 10 best practices when working with third parties

How can you build a privacy-focused TPRM program? In this webinar, we discuss best practices for privacy compliance when working with third parties, from onboarding to offboarding.

March 13, 2024

Learn more

Webinar

Third-Party Risk

TPRM privacy compliance: 10 best practices when working with third parties

How can you build a privacy-focused TPRM program? In this webinar, we discuss best practices for privacy compliance when working with third parties, from onboarding to offboarding.

March 13, 2024

Learn more

Kundengeschichte

Drittparteienrisiken

PUMA

Multinationale Sportmarke erfindet das Lieferantenrisikomanagement neu – mit einem kollaborativen, unternehmensweiten Ansatz

März 04, 2024

Learn more

Kundengeschichte

Drittparteienrisiken

PUMA

Multinationale Sportmarke erfindet das Lieferantenrisikomanagement neu – mit einem kollaborativen, unternehmensweiten Ansatz

März 04, 2024

Learn more

Blog

Gestion des risques tiers

IA & risques tiers : Une approche complète de l'évaluation des fournisseurs

Risques tiers liés à l'IA - Comment rester en contrôle ? Découvrez notre approche complète pour l'évaluation de vos fournisseurs

mars 04, 2024 4 min read

Learn more

Blog

Gestion des risques tiers

IA & risques tiers : Une approche complète de l'évaluation des fournisseurs

Risques tiers liés à l'IA - Comment rester en contrôle ? Découvrez notre approche complète pour l'évaluation de vos fournisseurs

mars 04, 2024 4 min read

Learn more

Video

Third-Party Risk

6 must-know trends in third-party management

Watch this video for the five top trends shaping the third-party management industry this year.

February 15, 2024

Learn more

Video

Third-Party Risk

6 must-know trends in third-party management

Watch this video for the five top trends shaping the third-party management industry this year.

February 15, 2024

Learn more

Blog

Third-Party Risk

Third-Party AI Risk: A Holistic Approach to Vendor Assessment

Assessing third-party risk for AI vendors is critical to AI governance, but you don’t have to start your assessment process from scratch. Learn more about taking a holistic approach to vendor assessments for AI.

Marco Barone

February 06, 2024 4 min read

Learn more

Blog

Third-Party Risk

Third-Party AI Risk: A Holistic Approach to Vendor Assessment

Assessing third-party risk for AI vendors is critical to AI governance, but you don’t have to start your assessment process from scratch. Learn more about taking a holistic approach to vendor assessments for AI.

Marco Barone

February 06, 2024 4 min read

Learn more

Blog

Drittparteienrisiken

KI-Risiken durch Drittparteien: Ein ganzheitlicher Ansatz zur Bewertung von Anbietern

Die Risikobewertung von KI-Anbietern ist ein wichtiger Bestandteil der KI-Governance, aber Sie müssen Ihren Bewertungsprozess nicht bei Null beginnen. Erfahren Sie mehr darüber, wie Sie einen ganzheitlichen Ansatz bei der Bewertung von KI-Anbietern verfolgen.

Marco Barone

Februar 06, 2024 4 min read

Learn more

Blog

Drittparteienrisiken

KI-Risiken durch Drittparteien: Ein ganzheitlicher Ansatz zur Bewertung von Anbietern

Die Risikobewertung von KI-Anbietern ist ein wichtiger Bestandteil der KI-Governance, aber Sie müssen Ihren Bewertungsprozess nicht bei Null beginnen. Erfahren Sie mehr darüber, wie Sie einen ganzheitlichen Ansatz bei der Bewertung von KI-Anbietern verfolgen.

Marco Barone

Februar 06, 2024 4 min read

Learn more

Blog

Riesgos de terceros

Riesgo de IA de terceros: un enfoque integral para las evaluaciones de proveedores

Evaluar el riesgo de terceros de los proveedores de IA es fundamental para la gobernanza de la IA, pero no tienes por qué iniciar tu proceso de evaluación desde cero. Obtén más información sobre cómo adoptar un enfoque integral con respecto a las evaluaciones de proveedores para la IA.

Marco Barone

febrero 06, 2024 4 min read

Learn more

Blog

Riesgos de terceros

Riesgo de IA de terceros: un enfoque integral para las evaluaciones de proveedores

Evaluar el riesgo de terceros de los proveedores de IA es fundamental para la gobernanza de la IA, pero no tienes por qué iniciar tu proceso de evaluación desde cero. Obtén más información sobre cómo adoptar un enfoque integral con respecto a las evaluaciones de proveedores para la IA.

Marco Barone

febrero 06, 2024 4 min read

Learn more

Blog

Rischi da parte di terzi

Rischi da parte di terzi per quanto riguarda l'intelligenza artificiale: un approccio globale alla valutazione dei vendor

La valutazione dei rischi da parte di terzi per quanto riguarda i vendor di intelligenza artificiale è di fondamentale importanza per la governance dell'IA, ma non è necessario iniziare questo processo da zero. Scopri di più su come adottare un approccio globale alle valutazioni dei vendor di intelligenza artificiale.

Marco Barone

febbraio 06, 2024 4 min read

Learn more

Blog

Rischi da parte di terzi

Rischi da parte di terzi per quanto riguarda l'intelligenza artificiale: un approccio globale alla valutazione dei vendor

La valutazione dei rischi da parte di terzi per quanto riguarda i vendor di intelligenza artificiale è di fondamentale importanza per la governance dell'IA, ma non è necessario iniziare questo processo da zero. Scopri di più su come adottare un approccio globale alle valutazioni dei vendor di intelligenza artificiale.

Marco Barone

febbraio 06, 2024 4 min read

Learn more

Checklist

AI Governance

Questions to add to existing vendor assessments for AI

Managing third-party risk is a critical part of AI governance, but you don’t have to start from scratch. Use these questions to adapt your existing vendor assessments to be used for AI.

January 31, 2024

Learn more

Checklist

AI Governance

Questions to add to existing vendor assessments for AI

Managing third-party risk is a critical part of AI governance, but you don’t have to start from scratch. Use these questions to adapt your existing vendor assessments to be used for AI.

January 31, 2024

Learn more

Infographic

Third-Party Risk

4 top-of-mind challenges for CISOs

What key challenges do CISOs face going into the new year? Download this infographic to hear what experts from industries across the board have to say.

January 30, 2024

Learn more

Infographic

Third-Party Risk

4 top-of-mind challenges for CISOs

What key challenges do CISOs face going into the new year? Download this infographic to hear what experts from industries across the board have to say.

January 30, 2024

Learn more

Webinar

Third-Party Risk

A look back at 2023 & third-party management trends for the new year

Join this webinar as we discuss key trends for third-party management and lessons learned over the last year.

January 24, 2024

Learn more

Webinar

Third-Party Risk

A look back at 2023 & third-party management trends for the new year

Join this webinar as we discuss key trends for third-party management and lessons learned over the last year.

January 24, 2024

Learn more

Webinar

Third-Party Risk

Live demo EMEA: Master third-party risk management with OneTrust

Attend this demo to see how our TPRM solution can help you identify and mitigate risk as well as automate manual and repetitive tasks to ultimately reduce the time you spend managing your vendors

January 23, 2024

Learn more

Webinar

Third-Party Risk

Utilizing inherent risk for more efficient third-party management

Insight into your third parties’ inherent risks can change the way you run your TPM program.

November 30, 2023

Learn more

Webinar

Third-Party Risk

Utilizing inherent risk for more efficient third-party management

Insight into your third parties’ inherent risks can change the way you run your TPM program.

November 30, 2023

Learn more

Webinar

Third-Party Risk

Elevating third-party safety: The art of TPRM and TPDD integration

Join our webinar to learn the primary goals of successful Third-Party Risk and Third-Party Due Diligence programs.

November 21, 2023

Learn more

Webinar

Third-Party Risk

Elevating third-party safety: The art of TPRM and TPDD integration

Join our webinar to learn the primary goals of successful Third-Party Risk and Third-Party Due Diligence programs.

November 21, 2023

Learn more

Blog

Third-Party Risk

Are your third parties a privacy compliance liability?

What role do third parties play in your privacy compliance efforts? Learn how the two functions overlap and ways to keep data secure across your supply chain.

Katrina Dalao

November 07, 2023 10 min read

Learn more

Blog

Third-Party Risk

Are your third parties a privacy compliance liability?

What role do third parties play in your privacy compliance efforts? Learn how the two functions overlap and ways to keep data secure across your supply chain.

Katrina Dalao

November 07, 2023 10 min read

Learn more

Blog

Gestion des risques tiers

Vos tiers constituent-ils un risque pour votre conformité en termes de confidentialité ?

Quel rôle les tiers jouent-ils dans votre conformité en matière de confidentialité ? Découvrez les connections entre les deux fonctions et comment garantir la sécurité des données dans votre chaîne d’approvisionnement.

Katrina Dalao

novembre 07, 2023 10 min read

Learn more

Blog

Gestion des risques tiers

Vos tiers constituent-ils un risque pour votre conformité en termes de confidentialité ?

Quel rôle les tiers jouent-ils dans votre conformité en matière de confidentialité ? Découvrez les connections entre les deux fonctions et comment garantir la sécurité des données dans votre chaîne d’approvisionnement.

Katrina Dalao

novembre 07, 2023 10 min read

Learn more

Webinar

Ethics Program Management

Ethics Exchange: Risk assessments

Join our risk assessments experts as we discuss best practices, program templates, and how provide an assessment that provides the best value for your organization.

October 25, 2023

Learn more

Webinar

Ethics Program Management

Ethics Exchange: Risk assessments

Join our risk assessments experts as we discuss best practices, program templates, and how provide an assessment that provides the best value for your organization.

October 25, 2023

Learn more

Webinar

Third-Party Risk

5 Ways to save time when assessing third parties for privacy and security risks webinar

Join our webinar and learn how to save time and streamline third-party risk assessment throughout the TPRM lifecycle.

October 25, 2023

Learn more

Webinar

Third-Party Risk

5 Ways to save time when assessing third parties for privacy and security risks webinar

Join our webinar and learn how to save time and streamline third-party risk assessment throughout the TPRM lifecycle.

October 25, 2023

Learn more

eBook

Third-Party Risk

Data privacy compliance and Third-Party Management: A unified approach

Understand the importance of data privacy in third-party risk management, and 10 best practices for achieving privacy compliance when working with third parties.

October 12, 2023

Learn more

eBook

Third-Party Risk

Data privacy compliance and Third-Party Management: A unified approach

Understand the importance of data privacy in third-party risk management, and 10 best practices for achieving privacy compliance when working with third parties.

October 12, 2023

Learn more

Blog

Third-Party Risk

Trust talks: Actioning trust-based cybersecurity from individual to enterprise

Security teams can help create and champion organizational trust despite interdepartmental silos

Jason Koestenblatt

October 09, 2023 4 min read

Learn more

Blog

GRC & Security Assurance

Digital transformation and the evolving cybersecurity landscape

As the technological landscape continues to evolve, teams are seeing increases in compliance obligations, regulations, and the proliferation of cloud technology.

Scott Solomon

October 09, 2023 3 min read

Learn more

Blog

Third-Party Risk

Trust talks: Actioning trust-based cybersecurity from individual to enterprise

Security teams can help create and champion organizational trust despite interdepartmental silos

Jason Koestenblatt

October 09, 2023 4 min read

Learn more

Blog

GRC & Security Assurance

Digital transformation and the evolving cybersecurity landscape

As the technological landscape continues to evolve, teams are seeing increases in compliance obligations, regulations, and the proliferation of cloud technology.

Scott Solomon

October 09, 2023 3 min read

Learn more

Blog

GRC & Security Assurance

Cybersecurity Awareness Month resource hub

The cybersecurity awareness hub pulls resources from our experts on the Security CoE, GRC, Privacy, DataGuidance, and TPRM teams to a central resource.

Jason Koestenblatt, Team Lead, Content Marketing

October 02, 2023 3 min read

Learn more

Blog

GRC & Security Assurance

Cybersecurity Awareness Month resource hub

The cybersecurity awareness hub pulls resources from our experts on the Security CoE, GRC, Privacy, DataGuidance, and TPRM teams to a central resource.

Jason Koestenblatt, Team Lead, Content Marketing

October 02, 2023 3 min read

Learn more

Webinar

Third-Party Risk

Live Demo EMEA: How OneTrust can help advance your third-party risk management program

Join us for a live demo of OneTrust's third-party risk management solution and see how it can help automate and streamline your TPRM program.

September 19, 2023

Learn more

Webinar

Third-Party Risk

Live Demo EMEA: How OneTrust can help advance your third-party risk management program

Join us for a live demo of OneTrust's third-party risk management solution and see how it can help automate and streamline your TPRM program.

September 19, 2023

Learn more

Webinar

Third-Party Risk

Where contracting fits in the third-party risk lifecycle: 5 opportunities for optimization

Join this webinar to learn how to manage the third-party risk lifecycle across teams while optimizing your processes with automation.

September 07, 2023

Learn more

Webinar

Third-Party Risk

Where contracting fits in the third-party risk lifecycle: 5 opportunities for optimization

Join this webinar to learn how to manage the third-party risk lifecycle across teams while optimizing your processes with automation.

September 07, 2023

Learn more

Webinar

Third-Party Risk

Staying vigilant: 7 practical tips for ongoing third-party risk monitoring

In this webinar, we'll share seven practical tips for effective third-party risk monitoring, helping you to identify new risks and take timely action to protect your business.

August 01, 2023

Learn more

Webinar

Third-Party Risk

Staying vigilant: 7 practical tips for ongoing third-party risk monitoring

In this webinar, we'll share seven practical tips for effective third-party risk monitoring, helping you to identify new risks and take timely action to protect your business.

August 01, 2023

Learn more

Infographic

Third-Party Risk

What are your third parties not telling you?

Learn how to actively screen and monitor your third parties in the OneTrust Third-Party Risk Exchange.

July 24, 2023

Learn more

Infographic

Third-Party Risk

What are your third parties not telling you?

Learn how to actively screen and monitor your third parties in the OneTrust Third-Party Risk Exchange.

July 24, 2023

Learn more

Webinar

Third-Party Due Diligence

Driving excellence in third-party risk management: An in-depth look at different due diligence approaches

Join our in-depth webinar and learn how to define third-party due dilligence levels and when to apply them during your vendor management lifecycle.

July 20, 2023

Learn more

Webinar

Third-Party Due Diligence

Driving excellence in third-party risk management: An in-depth look at different due diligence approaches

Join our in-depth webinar and learn how to define third-party due dilligence levels and when to apply them during your vendor management lifecycle.

July 20, 2023

Learn more

Webinar

Third-Party Risk

Automating third-party management workflows: 5 ways to drive alignment across teams

Join us as we explore how automating third-party management workflows streamlines processes, drives alignment across teams, and reduces reduntant work.

July 19, 2023

Learn more

Webinar

Third-Party Risk

Automating third-party management workflows: 5 ways to drive alignment across teams

Join us as we explore how automating third-party management workflows streamlines processes, drives alignment across teams, and reduces reduntant work.

July 19, 2023

Learn more

Webinar

Drittparteienrisiken

Sind Ihre Auslagerungspartner und Drittparteien eine Belastung für Ihre Datenschutz Compliance? 5 Tipps, um Ihr Risiko zu reduzieren

Dieses Webinar erläutert, wie Sie mit einem Third Party Risk Management-Programm datenschutzbezogene Risiken verringern, Compliance Records mit Leichtigkeit führen und die Zusammenarbeit von Geschäftseinheiten fördern können.

Juli 19, 2023

Learn more

Webinar

Drittparteienrisiken

Sind Ihre Auslagerungspartner und Drittparteien eine Belastung für Ihre Datenschutz Compliance? 5 Tipps, um Ihr Risiko zu reduzieren

Dieses Webinar erläutert, wie Sie mit einem Third Party Risk Management-Programm datenschutzbezogene Risiken verringern, Compliance Records mit Leichtigkeit führen und die Zusammenarbeit von Geschäftseinheiten fördern können.

Juli 19, 2023

Learn more

Webinar

Third-Party Due Diligence

A shortcut to third party due diligence fundamentals

In this webinar, we examine the scope of third-party due dilligence, best practices, and industry trends driving greater scrutiny on third parties.

July 13, 2023

Learn more

Webinar

Third-Party Due Diligence

A shortcut to third party due diligence fundamentals

In this webinar, we examine the scope of third-party due dilligence, best practices, and industry trends driving greater scrutiny on third parties.

July 13, 2023

Learn more

Blog

Third-Party Risk

How to start a third-party risk management program: Implement effective processes across your organization

Learn how to implement an effective third-party risk management program that meets your organization's needs.

Katrina Dalao

July 11, 2023 5 min read

Learn more

Blog

Third-Party Risk

How to start a third-party risk management program: Monitor and maintain performance

How to start a third-party risk management program: Monitor and maintain performance

Katrina Dalao

July 11, 2023 5 min read

Learn more

Blog

Third-Party Risk

How to start a third-party risk management program: Get leadership buy-in

Create a TPRM program that addresses your organization’s highest security risks and aligns with strategic objectives

Katrina Dalao

July 11, 2023 5 min read

Learn more

Blog

Third-Party Risk

How to start a third-party risk management program: Implement effective processes across your organization

Learn how to implement an effective third-party risk management program that meets your organization's needs.

Katrina Dalao

July 11, 2023 5 min read

Learn more

Blog

Third-Party Risk

How to start a third-party risk management program: Monitor and maintain performance

How to start a third-party risk management program: Monitor and maintain performance

Katrina Dalao

July 11, 2023 5 min read

Learn more

Blog

Third-Party Risk

How to start a third-party risk management program: Get leadership buy-in

Create a TPRM program that addresses your organization’s highest security risks and aligns with strategic objectives

Katrina Dalao

July 11, 2023 5 min read

Learn more

Webinar

Third-Party Risk

Are your third parties a privacy compliance liability? 5 tips to reduce your exposure

Join our webinar and learn how to create an effective, privacy-focused third-party risk management (TPRM) program that streamlines recordkeeping and reduces your risk exposure.

July 05, 2023

Learn more

Webinar

Third-Party Risk

Are your third parties a privacy compliance liability? 5 tips to reduce your exposure

Join our webinar and learn how to create an effective, privacy-focused third-party risk management (TPRM) program that streamlines recordkeeping and reduces your risk exposure.

July 05, 2023

Learn more

Blog

Third-Party Risk

How to start a third-party risk management program: Understand the types of third-party risks

Learn about the different types of third-party risks and how to address each one

Katrina Dalao

June 29, 2023 6 min read

Learn more

Blog

Third-Party Risk

How to start a third-party risk management program: Understand the types of third-party risks

Learn about the different types of third-party risks and how to address each one

Katrina Dalao

June 29, 2023 6 min read

Learn more

Video

Third-Party Risk

Third-party management demo

See how OneTrust's third-party management solution can help scale your third-party lifecycle and evaluate vendors with real-time risk intelligence.

June 27, 2023

Learn more

Video

Third-Party Risk

Third-party management demo

See how OneTrust's third-party management solution can help scale your third-party lifecycle and evaluate vendors with real-time risk intelligence.

June 27, 2023

Learn more

Video

GRC & Security Assurance

Third-party risk exchange demo

The OneTrust Vendor Risk Management provides businesses access to pre-completed vendor risk assessments while supporting industry standards.

June 22, 2023

Learn more

Video

GRC & Security Assurance

Third-party risk exchange demo

The OneTrust Vendor Risk Management provides businesses access to pre-completed vendor risk assessments while supporting industry standards.

June 22, 2023

Learn more

Webinar

Third-Party Risk

Third-party data breach incident response: Essential workflows for effective recovery

Join OneTrust and HackNotice as we discuss effective ways to protect your organization from third-party data breaches and build strong incident response workflows. 

June 13, 2023

Learn more

Webinar

Third-Party Risk

Third-party data breach incident response: Essential workflows for effective recovery

Join OneTrust and HackNotice as we discuss effective ways to protect your organization from third-party data breaches and build strong incident response workflows. 

June 13, 2023

Learn more

Webinar

Third-Party Risk

Bridging the gap: How procurement and InfoSec can work together to reduce third-party risks

Join our upcoming webinar as we explore the pivotal ways procurement and InfoSec teams can collaborate to reduce third-party risks.

June 08, 2023

Learn more

Webinar

Third-Party Risk

Bridging the gap: How procurement and InfoSec can work together to reduce third-party risks

Join our upcoming webinar as we explore the pivotal ways procurement and InfoSec teams can collaborate to reduce third-party risks.

June 08, 2023

Learn more

Seminario web

Riesgos de terceros

Secretos del éxito en la gestión de terceros: controlar la diligencia debida y la gestión de riesgos

Dominar el arte de la diligencia debida y la gestión de riesgos y cómo armonizarlos para maximizar su eficacia. 

junio 08, 2023

Learn more

eBook

Third-Party Risk

InfoSec's guide to third-party risk management: Key considerations and best practices

Download our eBook to learn practical advice on how to approach third-party risk management like an InfoSec expert.

June 05, 2023

Learn more

eBook

Third-Party Risk

InfoSec's guide to third-party risk management: Key considerations and best practices

Download our eBook to learn practical advice on how to approach third-party risk management like an InfoSec expert.

June 05, 2023

Learn more

Blog

Third-Party Risk

HackNotice and OneTrust partner for deeper third-party threat intelligence

OneTrust customers can take advantage of HackNotice’s near real-time breach alerts.

June 01, 2023 3 min read

Learn more

Blog

Third-Party Risk

HackNotice and OneTrust partner for deeper third-party threat intelligence

OneTrust customers can take advantage of HackNotice’s near real-time breach alerts.

June 01, 2023 3 min read

Learn more

Blog

Privacy Management

Assessing your international data transfers post-DPC ruling

The recent decision cast fresh doubt over the effectiveness of transfer safeguards and supplementary measures in conjunction with the practical application of third-country surveillance laws. 

Linda Thielova

June 01, 2023 8 min read

Learn more

Blog

Privacy Management

Assessing your international data transfers post-DPC ruling

The recent decision cast fresh doubt over the effectiveness of transfer safeguards and supplementary measures in conjunction with the practical application of third-country surveillance laws. 

Linda Thielova

June 01, 2023 8 min read

Learn more

Webinar

Third-Party Risk

Unpacking the third-party risk regulatory landscape in the Nordic region and beyond

In this live webinar, our expert panel discuss emerging third-party risk regulatory trends in the Nordic region and show how OneTrust can help your business stay complaint.

May 30, 2023

Learn more

Webinar

Third-Party Risk

Unpacking the third-party risk regulatory landscape in the Nordic region and beyond

In this live webinar, our expert panel discuss emerging third-party risk regulatory trends in the Nordic region and show how OneTrust can help your business stay complaint.

May 30, 2023

Learn more

Webinar

GRC & Security Assurance

Live demo EMEA: How to monitor third-party risks with OneTrust

Join us for a live demo of OneTrust's Third-Party Management capabilities and how  our holistic approach helps you monitor and screen third parties across critial risk domains with up-to-date intelligence.

May 23, 2023

Learn more

Webinar

Third-Party Risk

Live demo: How to monitor third-party risks with OneTrust

In this webinar, see how OneTrust's Third-Party Management can help you build a more holistic program that actively monitors your third parties and lowers your risk exposure.

May 23, 2023

Learn more

Blog

Inteligencia para la confianza

OneTrust presenta innovaciones para habilitar el uso responsable de los datos y el trust intelligence a gran escala

OneTrust anuncia nuevas innovaciones dentro de su plataforma de Trust Intelligence para ayudar a las empresas a utilizar los datos de forma responsable y desarrollar inteligencia de confianza a escala.

mayo 23, 2023 5 min read

Learn more

Webinar

Third-Party Risk

Save time, save money: A practical guide to automating third-party risk management

In this webinar, you will learn how to reduce the use of spreadsheets for third-party risk management and cut costs when building your TPRM program.

May 03, 2023

Learn more

Webinar

Third-Party Risk

Save time, save money: A practical guide to automating third-party risk management

In this webinar, you will learn how to reduce the use of spreadsheets for third-party risk management and cut costs when building your TPRM program.

May 03, 2023

Learn more

Webinar

Third-Party Risk

Third-Party management secrets: Aligning risk management and due diligence

Watch this webinar to learn how to align your TPRM and TPDD programs to achieve workflow efficiencies and the distinction between the two discipline areas.

April 20, 2023

Learn more

Webinar

Third-Party Risk

Third-Party management secrets: Aligning risk management and due diligence

Watch this webinar to learn how to align your TPRM and TPDD programs to achieve workflow efficiencies and the distinction between the two discipline areas.

April 20, 2023

Learn more

Blog

Riesgos de terceros

¿Por qué elegir OneTrust para la gestión de terceros?

abril 13, 2023 6 min read

Learn more

In-Person Event

Third-Party Risk

Risk on the Road: Navigating data management, compliance automation and third-party risk

Join this OneTrust live event series, which will address critical topics such as navigating data management, compliance automation and third-party risk.

April 11, 2023

Learn more

In-Person Event

Third-Party Risk

Risk on the Road: Navigating data management, compliance automation and third-party risk

Join this OneTrust live event series, which will address critical topics such as navigating data management, compliance automation and third-party risk.

April 11, 2023

Learn more

Infographic

Third-Party Risk

Third-party risk: A growing spiderweb

The number of businesses and third-party suppliers has increased, widening the risk landscape. This infographic shows how businesses are managing that risk.

April 03, 2023

Learn more

Infographic

Third-Party Risk

Third-party risk: A growing spiderweb

The number of businesses and third-party suppliers has increased, widening the risk landscape. This infographic shows how businesses are managing that risk.

April 03, 2023

Learn more

Webinar

Privacy Management

The US privacy landscape for third-party risk: a program prototype time

Learn how to balance the intricacies of CPRA, VCDPA, CPA, CTDPA, and UCPA when managing third parties and understanding privacy-related risks.

March 28, 2023

Learn more

Webinar

Privacy Management

The US privacy landscape for third-party risk: a program prototype time

Learn how to balance the intricacies of CPRA, VCDPA, CPA, CTDPA, and UCPA when managing third parties and understanding privacy-related risks.

March 28, 2023

Learn more

Blog

Third-Party Risk

How to manage third-party risk across your entire business

Businesses need a comprehensive third-party management strategy covering all aspects of their relationships with third parties, such as security, privacy, ethics, and ESG.

March 08, 2023 7 min read

Learn more

Blog

Third-Party Risk

How to manage third-party risk across your entire business

Businesses need a comprehensive third-party management strategy covering all aspects of their relationships with third parties, such as security, privacy, ethics, and ESG.

March 08, 2023 7 min read

Learn more

Blog

Third-Party Risk

Why data privacy and third-party risk teams need to work together

Sharing information and resources across organizational silos is mutually beneficial for teams with the common goal of mitigating data privacy risk.

Scott Solomon

March 07, 2023 6 min read

Learn more

Blog

Third-Party Risk

Why data privacy and third-party risk teams need to work together

Sharing information and resources across organizational silos is mutually beneficial for teams with the common goal of mitigating data privacy risk.

Scott Solomon

March 07, 2023 6 min read

Learn more

Blog

Third-Party Risk

Supply Wisdom risk intelligence is now available in OneTrust’s Third-Party Risk Exchange

The partnership with Supply Wisdom brings compliance, financial, location-based ESG, and cyber risk data to Exchange customers and their third parties.

Chet Devchand, Director, Business Development Management

February 14, 2023 3 min read

Learn more

Blog

Third-Party Risk

Supply Wisdom risk intelligence is now available in OneTrust’s Third-Party Risk Exchange

The partnership with Supply Wisdom brings compliance, financial, location-based ESG, and cyber risk data to Exchange customers and their third parties.

Chet Devchand, Director, Business Development Management

February 14, 2023 3 min read

Learn more

Webinar

Third-Party Risk

Efficient third-party risk management: 10 Best practices for streamlining workflows

Attend this webinar to learn about Third-Party Risk Management (TPRM) workflow definition and maintenance best practices you can apply to your business.NEED

February 13, 2023

Learn more

Webinar

Third-Party Risk

Efficient third-party risk management: 10 Best practices for streamlining workflows

Attend this webinar to learn about Third-Party Risk Management (TPRM) workflow definition and maintenance best practices you can apply to your business.NEED

February 13, 2023

Learn more

Webinar

Third-Party Risk

Third-Party Management roundtable: 3 strategies for aligning Security, Privacy, Ethics, and ESG teams

In this webinar, you will learn how to utilize TPRM to help to optimize workflows, leverage data, and increase accountability across sourcing and procurement.

February 01, 2023

Learn more

Webinar

Third-Party Risk

Third-Party Management roundtable: 3 strategies for aligning Security, Privacy, Ethics, and ESG teams

In this webinar, you will learn how to utilize TPRM to help to optimize workflows, leverage data, and increase accountability across sourcing and procurement.

February 01, 2023

Learn more

Webinar

Drittparteienrisiken

Trends im IT-Risikomanagement – Behandeln Sie schon oder bewerten Sie noch?

Dieses Webinar thematisiert einen strukturierten und effektiven Umgang mit IT-/IS- Risikomanagement.

Januar 18, 2023

Learn more

Webinar

Drittparteienrisiken

Trends im IT-Risikomanagement – Behandeln Sie schon oder bewerten Sie noch?

Dieses Webinar thematisiert einen strukturierten und effektiven Umgang mit IT-/IS- Risikomanagement.

Januar 18, 2023

Learn more

Blog

Third-Party Risk

Build trust, promote your program in the Third-Party Risk Exchange

The Third-Party Risk Exchange allows businesses to learn more about each other's security posture, offer SIG Lite assessments on-demand, and more.

Pranav Menem

January 10, 2023 3 min read

Learn more

Blog

Third-Party Risk

Build trust, promote your program in the Third-Party Risk Exchange

The Third-Party Risk Exchange allows businesses to learn more about each other's security posture, offer SIG Lite assessments on-demand, and more.

Pranav Menem

January 10, 2023 3 min read

Learn more

Webinar

Third-Party Risk

Third-party risk management demo

Our third-party risk software helps you build a vendor inventory, conduct vendor assessments, mitigate risks, monitor vendors over time, and more.

January 04, 2023

Learn more

Webinar

Third-Party Risk

Third-party risk management demo

Our third-party risk software helps you build a vendor inventory, conduct vendor assessments, mitigate risks, monitor vendors over time, and more.

January 04, 2023

Learn more

Blog

Third-Party Risk

As third-party needs sprawl, so do risk management investments

From a new focus on ESG to a renewed need for cybersecurity, third-party and vendor risk management solutions have become a priority for organizations.

Jason Koestenblatt

January 04, 2023 3 min read

Learn more

Blog

Third-Party Risk

As third-party needs sprawl, so do risk management investments

From a new focus on ESG to a renewed need for cybersecurity, third-party and vendor risk management solutions have become a priority for organizations.

Jason Koestenblatt

January 04, 2023 3 min read

Learn more

Seminario web

Riesgos de terceros

Academia RGPD: Los riesgos de terceros

En la tercera sesión de la Academia RGPD hablaremos sobre los riesgos de proveedores (y empleados), crítico en los programas de privacidad. 

diciembre 22, 2022

Learn more

Webinar

Third-Party Risk

Where contracting fits in the third-party risk lifecycle: 5 opportunities for automation

In this third-party lifecycle webinar, we’ll explore the contracting problem many organizations face when limiting risk exposure while automating processes.

December 14, 2022

Learn more

Blog

Third-Party Due Diligence

Best practices for conducting third-party due diligence for ethics and compliance

A well-designed compliance program should apply risk-based due diligence and have a process for the full lifecycle of third-party risk management

Kelly Maxwell

December 08, 2022 9 min read

Learn more

Blog

Third-Party Due Diligence

Best practices for conducting third-party due diligence for ethics and compliance

A well-designed compliance program should apply risk-based due diligence and have a process for the full lifecycle of third-party risk management

Kelly Maxwell

December 08, 2022 9 min read

Learn more

Video

Third-Party Risk

OneTrust third-party risk management for privacy professionals

Watch the demo video to learn how OneTrust Third-Party Risk Management can help your TPRM program meet your privacy team's expectations.

December 07, 2022

Learn more

Video

Third-Party Risk

OneTrust third-party risk management for privacy professionals

Watch the demo video to learn how OneTrust Third-Party Risk Management can help your TPRM program meet your privacy team's expectations.

December 07, 2022

Learn more

Webinar

Third-Party Risk

How do you manage your third-party cyber risks? 5 best practices to improve your cyber resilience webinar

In this session, we’ll outline how to identify, reduce, and monitor cyber risk as it relates to your third parties including methods for tracking cyber risks over time.

December 06, 2022

Learn more

Webinar

Third-Party Risk

How do you manage your third-party cyber risks? 5 best practices to improve your cyber resilience webinar

In this session, we’ll outline how to identify, reduce, and monitor cyber risk as it relates to your third parties including methods for tracking cyber risks over time.

December 06, 2022

Learn more

Webinar

Third-Party Risk

Canada and ISO 27001:2022: How automation streamlines compliance

Join OneTrust for a demo on how our privacy management platform helps Canadian businesses streamline ISO 27001:2022 compliance.

November 30, 2022

Learn more

Blog

Third-Party Risk

Ironclad, OneTrust partner to streamline and secure third-party procurement processes

To help organizations take a holistic approach to the third-party contracting and risk management process, OneTrust has partnered with Ironclad.

Chet Devchand

November 30, 2022 4 min read

Learn more

Webinar

Third-Party Risk

Canada and ISO 27001:2022: How automation streamlines compliance

Join OneTrust for a demo on how our privacy management platform helps Canadian businesses streamline ISO 27001:2022 compliance.

November 30, 2022

Learn more

Blog

Third-Party Risk

Ironclad, OneTrust partner to streamline and secure third-party procurement processes

To help organizations take a holistic approach to the third-party contracting and risk management process, OneTrust has partnered with Ironclad.

Chet Devchand

November 30, 2022 4 min read

Learn more

Blog

Third-Party Risk

What every Chief Privacy Officer should know about third-party risk management

CPOs track risk via data mapping, in which data is discovered, assessed, and tracked as it flows throughout the organization, including to third parties.

Jason Koestenblatt, Team Lead, Content Marketing

November 18, 2022 6 min read

Learn more

Blog

Third-Party Risk

What every Chief Privacy Officer should know about third-party risk management

CPOs track risk via data mapping, in which data is discovered, assessed, and tracked as it flows throughout the organization, including to third parties.

Jason Koestenblatt, Team Lead, Content Marketing

November 18, 2022 6 min read

Learn more

Webinar

GRC & Security Assurance

Analyzing ISO 27001:2022 reinforcing privacy and security compliance with automation webinar

Learn how InfoSec teams can automate scoping mandatory requirements and streamline generating evidence to prove compliance across ISO.

November 17, 2022

Learn more

Webinar

GRC & Security Assurance

Analyzing ISO 27001:2022 reinforcing privacy and security compliance with automation webinar

Learn how InfoSec teams can automate scoping mandatory requirements and streamline generating evidence to prove compliance across ISO.

November 17, 2022

Learn more

Webinar

Third-Party Risk

Do You Know Your third-party cyber risks? How to take a data-driven approach to reduce risk

In this webinar session, we’ll outline how to take a data-driven approach to understand, reduce, and monitor cyber risks as it relates to your third parties.

November 15, 2022

Learn more

Webinar

Third-Party Risk

Do You Know Your third-party cyber risks? How to take a data-driven approach to reduce risk

In this webinar session, we’ll outline how to take a data-driven approach to understand, reduce, and monitor cyber risks as it relates to your third parties.

November 15, 2022

Learn more

Blog

Third-Party Risk

Thousands of RiskRecon grades now available in the OneTrust Third-Party Risk Exchange

We are partnering with RiskRecon, a Mastercard Company to make cybersecurity ratings available out-of-the-box to all Third-Party Risk Exchange customers.

Chet Devchand

November 01, 2022 3 min read

Learn more

Blog

Third-Party Risk

Thousands of RiskRecon grades now available in the OneTrust Third-Party Risk Exchange

We are partnering with RiskRecon, a Mastercard Company to make cybersecurity ratings available out-of-the-box to all Third-Party Risk Exchange customers.

Chet Devchand

November 01, 2022 3 min read

Learn more

Webinar

Third-Party Risk

TPRM program blueprint: Your 5 step guide to third-party risk management success

This webinar focuses on the fundamental considerations when managing third parties and enables your organization to build a solid and scalable foundation.

October 31, 2022

Learn more

Webinar

Third-Party Risk

TPRM program blueprint: Your 5 step guide to third-party risk management success

This webinar focuses on the fundamental considerations when managing third parties and enables your organization to build a solid and scalable foundation.

October 31, 2022

Learn more

Blog

Third-Party Risk

Put a hold on hacks: Fight the phish and other emerging cyber threats

In 2021, there was a 62% global attack spike in ransomware (158% increase in North America), and an increased focus on attacks by regulatory bodies.

Jason Koestenblatt, Team Lead, Content Marketing

October 21, 2022 6 min read

Learn more

Blog

Third-Party Risk

Put a hold on hacks: Fight the phish and other emerging cyber threats

In 2021, there was a 62% global attack spike in ransomware (158% increase in North America), and an increased focus on attacks by regulatory bodies.

Jason Koestenblatt, Team Lead, Content Marketing

October 21, 2022 6 min read

Learn more

Webinar

Third-Party Risk

How OneTrust can help scale your Third-Party Risk program

In this webinar, we provide a live product demonstration to show you how your organization can optimize and scale a third-party risk program.

October 18, 2022

Learn more

Webinar

Third-Party Risk

How OneTrust can help scale your Third-Party Risk program

In this webinar, we provide a live product demonstration to show you how your organization can optimize and scale a third-party risk program.

October 18, 2022

Learn more

Webinar

Third-Party Risk

Live demo: Building your third-party risk management program with OneTrust

This webinar will provide live product demonstrations to show you how your organization can optimize and scale a third-party risk program.

October 12, 2022

Learn more

Webinar

Third-Party Risk

5 Ways to save time when assessing third parties for privacy and security risks webinar

Watch this webinar as OneTrust discusses how privacy and security teams can save time throughout the third-party risk assessment lifecycle.

October 11, 2022

Learn more

Webinar

Third-Party Risk

5 Ways to save time when assessing third parties for privacy and security risks webinar

Watch this webinar as OneTrust discusses how privacy and security teams can save time throughout the third-party risk assessment lifecycle.

October 11, 2022

Learn more

Webinar

Third-Party Risk

7 core metrics every third-party risk program must track (and how to track them)

We’ll discuss the 7 core metrics successful third-party risk programs track and how to track them, such as critical metrics to track as your program matures.

September 28, 2022

Learn more

Webinar

Third-Party Risk

7 core metrics every third-party risk program must track (and how to track them)

We’ll discuss the 7 core metrics successful third-party risk programs track and how to track them, such as critical metrics to track as your program matures.

September 28, 2022

Learn more

Blog

Third-Party Risk

Why choose OneTrust for third-party management?

OneTrust simplifies third-party management by enabling control and visibility throughout the entire third-party lifecycle while you manage third parties.

Scott Solomon, Senior Manager, Product Marketing

September 23, 2022 5 min read

Learn more

Blog

Third-Party Risk

Why choose OneTrust for third-party management?

OneTrust simplifies third-party management by enabling control and visibility throughout the entire third-party lifecycle while you manage third parties.

Scott Solomon, Senior Manager, Product Marketing

September 23, 2022 5 min read

Learn more

Blog

Riesgos de terceros

¿Por qué elegir OneTrust para la gestión de terceros?

OneTrust simplifica la gestión de terceros al permitir el control y la visibilidad a lo largo de todo el ciclo de vida de los terceros mientras tú los administras.

Scott Solomon, Senior Manager, Product Marketing

septiembre 23, 2022 5 min read

Learn more

Blog

Riesgos de terceros

¿Por qué elegir OneTrust para la gestión de terceros?

OneTrust simplifica la gestión de terceros al permitir el control y la visibilidad a lo largo de todo el ciclo de vida de los terceros mientras tú los administras.

Scott Solomon, Senior Manager, Product Marketing

septiembre 23, 2022 5 min read

Learn more

Webinar

Third-Party Risk

Do you know your riskiest third parties?  7 warning signs you shouldn’t ignore 

Learn the top 7 red flags for risky third parties, mitigation tactics for reducing third-party risk, and key ways to streamline risk identification, and more.

September 22, 2022

Learn more

Webinar

Third-Party Risk

Do you know your riskiest third parties?  7 warning signs you shouldn’t ignore 

Learn the top 7 red flags for risky third parties, mitigation tactics for reducing third-party risk, and key ways to streamline risk identification, and more.

September 22, 2022

Learn more

Webinar

Third-Party Risk

3 Strategies for simplifying privacy compliance when working with third parties

In this webinar, we'll discuss third-party risk management's role in privacy compliance and cost-effective techniques for maintaining records for compliance.

September 18, 2022

Learn more

Webinar

Third-Party Risk

3 Strategies for simplifying privacy compliance when working with third parties

In this webinar, we'll discuss third-party risk management's role in privacy compliance and cost-effective techniques for maintaining records for compliance.

September 18, 2022

Learn more

eBook

Technology Risk & Compliance

The art of the enterprise IT risk assessment

Ensure your enterprise IT risk assessment is a success with a top-down approach that gets executive buy-in from the start

September 16, 2022

Learn more

eBook

Technology Risk & Compliance

The art of the enterprise IT risk assessment

Ensure your enterprise IT risk assessment is a success with a top-down approach that gets executive buy-in from the start

September 16, 2022

Learn more

Webinar

GRC & Security Assurance

Supply Chain Due Diligence Best Practices: A Practical Implementation Guide to LkSG Webinar

Watch our LkSG webinar to understand the scope of LkSG, how your company will need to adjust, and the repercussions of noncompliance.

September 07, 2022

Learn more

Webinar

GRC & Security Assurance

Supply Chain Due Diligence Best Practices: A Practical Implementation Guide to LkSG Webinar

Watch our LkSG webinar to understand the scope of LkSG, how your company will need to adjust, and the repercussions of noncompliance.

September 07, 2022

Learn more

Blog

Third-Party Risk

Reduce unnecessary risk with third-party risk management controls

As more tasks are outsourced to third-party providers, risk management programs become critical to securing sensitive data

September 03, 2022 4 min read

Learn more

Blog

Third-Party Risk

Reduce unnecessary risk with third-party risk management controls

As more tasks are outsourced to third-party providers, risk management programs become critical to securing sensitive data

September 03, 2022 4 min read

Learn more

Webinar

Third-Party Risk

Security & privacy C-Level panel: Best practices for building your TPRM program

In this webinar, we discuss best practices for how privacy and security teams can work better to eliminate redundant work, save time, and be more efficient.

August 30, 2022

Learn more

Webinar

Third-Party Risk

Security & privacy C-Level panel: Best practices for building your TPRM program

In this webinar, we discuss best practices for how privacy and security teams can work better to eliminate redundant work, save time, and be more efficient.

August 30, 2022

Learn more

Webinar

Third-Party Risk

10 best practices for streamlining your third-party risk management workflows

Watch this webinar to hear how to leverage third-party risk management workflow creation and maintenance best practices.

August 30, 2022

Learn more

Webinar

Third-Party Risk

10 best practices for streamlining your third-party risk management workflows

Watch this webinar to hear how to leverage third-party risk management workflow creation and maintenance best practices.

August 30, 2022

Learn more

Webinar

Third-Party Risk

Cybersecurity panel: How well do you know the threats posed by your third parties?

In this panel discussion, we address critical points such as defining the metrics to track in relation to third parties and their cybersecurity risks.  

August 28, 2022

Learn more

Webinar

Third-Party Risk

Cybersecurity panel: How well do you know the threats posed by your third parties?

In this panel discussion, we address critical points such as defining the metrics to track in relation to third parties and their cybersecurity risks.  

August 28, 2022

Learn more

Webinar

Third-Party Risk

Third-Party risk and the U.S. privacy landscape: the top 5 things you need to know

In this webinar, we’ll review services providers under the ADPPA and outline how you can ready your third-party risk program to align with privacy regulations.

July 31, 2022

Learn more

Webinar

Third-Party Risk

Third-Party risk and the U.S. privacy landscape: the top 5 things you need to know

In this webinar, we’ll review services providers under the ADPPA and outline how you can ready your third-party risk program to align with privacy regulations.

July 31, 2022

Learn more

Checklist

Third-Party Risk

LkSG readiness checklist: Is your company prepared for the German supply chain due diligence act?

Download our LkSG readiness checklist to understand your readiness for risk management systems and responsibilities, and due diligence obligations.

July 26, 2022

Learn more

Checklist

Third-Party Risk

LkSG readiness checklist: Is your company prepared for the German supply chain due diligence act?

Download our LkSG readiness checklist to understand your readiness for risk management systems and responsibilities, and due diligence obligations.

July 26, 2022

Learn more

Infographic

GRC & Security Assurance

The state of IT & third-party risk infographic

In this infographic, you'll discover third-party risk and learn how to operationalize a "3A approach", including addressing evolving risk factors and timelines.

July 19, 2022

Learn more

Infographic

GRC & Security Assurance

The state of IT & third-party risk infographic

In this infographic, you'll discover third-party risk and learn how to operationalize a "3A approach", including addressing evolving risk factors and timelines.

July 19, 2022

Learn more

Webinar

Third-Party Risk

Better by tomorrow: 7 third-party risk assessment best practices you can implement today

In this webinar, we’ll explore these questions and layout 7 must-know best practices to conduct more meaningful third-party risk assessments.

July 15, 2022

Learn more

Webinar

Third-Party Risk

Better by tomorrow: 7 third-party risk assessment best practices you can implement today

In this webinar, we’ll explore these questions and layout 7 must-know best practices to conduct more meaningful third-party risk assessments.

July 15, 2022

Learn more

Blog

Third-Party Due Diligence

How to manage and measure third-party risk

To become a trust-based business, protect your brand's reputation, and ensure compliance, you'll need to vet and monitor your third-party relationships. 

Kelly Maxwell

July 10, 2022 6 min read

Learn more

Blog

Third-Party Due Diligence

How to manage and measure third-party risk

To become a trust-based business, protect your brand's reputation, and ensure compliance, you'll need to vet and monitor your third-party relationships. 

Kelly Maxwell

July 10, 2022 6 min read

Learn more

eBook

Third-Party Risk

Building your third-party risk management program

Understand what it takes to build a successful third-party risk management program through OneTrust's third-party risk management guide.

July 08, 2022

Learn more

eBook

Third-Party Risk

Building your third-party risk management program

Understand what it takes to build a successful third-party risk management program through OneTrust's third-party risk management guide.

July 08, 2022

Learn more

Webinar

Third-Party Risk

How to comply: German supply chain Due Diligence act and Forthcoming EU rules

Join our panel of experts as we discuss the German Supply Chain Due Dilligence Act and the best practices for compliance.

June 15, 2022

Learn more

Webinar

Third-Party Risk

How to comply: German supply chain Due Diligence act and Forthcoming EU rules

Join our panel of experts as we discuss the German Supply Chain Due Dilligence Act and the best practices for compliance.

June 15, 2022

Learn more

Blog

Third-Party Risk

10 steps to improving your security questionnaire responses

The information gathered from security questionnaires is critical in the evaluation of business and security practices, and is crucial for compliance.

Daniela Villarreal

June 12, 2022 7 min read

Learn more

Blog

Third-Party Risk

10 steps to improving your security questionnaire responses

The information gathered from security questionnaires is critical in the evaluation of business and security practices, and is crucial for compliance.

Daniela Villarreal

June 12, 2022 7 min read

Learn more

Webinar

Third-Party Risk

Third-Party risk best practices: How to align privacy & security teams for greater productivity

This webinar will discuss best practices for how privacy and security teams can work together to eliminate redundant work, save time, and be more efficient.

June 06, 2022

Learn more

Webinar

Third-Party Risk

Third-Party risk best practices: How to align privacy & security teams for greater productivity

This webinar will discuss best practices for how privacy and security teams can work together to eliminate redundant work, save time, and be more efficient.

June 06, 2022

Learn more

Webinar

GRC & Security Assurance

Elevating your third party risk program with an integrated infosec platform

Join this webinar to learn how you can integrate your Third-Party Risk Management program within a broader IT Security platform

May 26, 2022

Learn more

Webinar

GRC & Security Assurance

Elevating your third party risk program with an integrated infosec platform

Join this webinar to learn how you can integrate your Third-Party Risk Management program within a broader IT Security platform

May 26, 2022

Learn more

Webinar

Third-Party Risk

Preparing your TPRM program: A 30-day implementation guide

In this webinar, we will provide you with the steps that you need to define a solid third-party risk management program

May 25, 2022

Learn more

Webinar

Third-Party Risk

Preparing your TPRM program: A 30-day implementation guide

In this webinar, we will provide you with the steps that you need to define a solid third-party risk management program

May 25, 2022

Learn more

Blog

Third-Party Risk

OneTrust Third-Party Risk Exchange now provides SecurityScorecard Cybersecurity Rating

OneTrust is expanding its partnership with SecurityScorecard to enable Third-Party Risk Exchange customers to view complementary Cybersecurity Ratings.

Scott Solomon

May 17, 2022 4 min read

Learn more

Blog

Third-Party Risk

OneTrust Third-Party Risk Exchange now provides SecurityScorecard Cybersecurity Rating

OneTrust is expanding its partnership with SecurityScorecard to enable Third-Party Risk Exchange customers to view complementary Cybersecurity Ratings.

Scott Solomon

May 17, 2022 4 min read

Learn more

Report

Third-Party Risk

OneTrust is a leader in third-party risk management platforms

See why Forrester named OneTrust a leader in The Forrester Wave: Third-Party Risk Management Platforms, Q2 2022 report.

May 16, 2022

Learn more

Infographic

Third-Party Risk

Integrating IT, security & third-party risk

Download this infographic and learn how a central platform can integrate IT, security, and risk-management and streamline collaboration across your business.

April 27, 2022

Learn more

Webinar

Third-Party Risk

Accelerating automation: How the pandemic forced third-party management to scale

Watch this webinar and see how the COVID-19 pandemic forced companies to accelerate automation and scale their third-party management.

April 26, 2022

Learn more

Webinar

Third-Party Risk

Accelerating automation: How the pandemic forced third-party management to scale

Watch this webinar and see how the COVID-19 pandemic forced companies to accelerate automation and scale their third-party management.

April 26, 2022

Learn more

Blog

Third-Party Risk

Java framework ‘Spring4Shell’ vulnerability leads to potential exploit

A zero-day Java vulnerability, "Spring4Shell" surfaced and experts believe it could be as impactful as 2021's Log4j. Read to learn more.

Justin Henkel, Head of CISO Center of Excellence

April 04, 2022 3 min read

Learn more

Webinar

Third-Party Risk

Secrets to Success: The winning game plan for security questionnaire response

Discover effective strategies for preparing security questionaire responses with our free webinar.

April 04, 2022

Learn more

Webinar

Third-Party Risk

Secrets to Success: The winning game plan for security questionnaire response

Discover effective strategies for preparing security questionaire responses with our free webinar.

April 04, 2022

Learn more

Blog

Third-Party Risk

Java framework ‘Spring4Shell’ vulnerability leads to potential exploit

A zero-day Java vulnerability, "Spring4Shell" surfaced and experts believe it could be as impactful as 2021's Log4j. Read to learn more.

Justin Henkel, Head of CISO Center of Excellence

April 04, 2022 3 min read

Learn more

Webinar

Third-Party Risk

Ready, set, launch your TPRM program: A 30-day implementation roadmap

Watch this webinar and learn how to launch an effective third-party risk managment program and practical methods to track success.

March 30, 2022

Learn more

Webinar

Third-Party Risk

Ready, set, launch your TPRM program: A 30-day implementation roadmap

Watch this webinar and learn how to launch an effective third-party risk managment program and practical methods to track success.

March 30, 2022

Learn more

eBook

Third-Party Risk

The shift to third-party management

Download our guide on third-party management and learn what you need to know to shift your buisness to TPM.

March 29, 2022

Learn more

eBook

Third-Party Risk

The shift to third-party management

Download our guide on third-party management and learn what you need to know to shift your buisness to TPM.

March 29, 2022

Learn more

Report

Third-Party Risk

OneTrust becomes only IT VRM vendor to receive the Gartner Peer Insights™ Customers’ Choice distinction for three years in a row

Download the 2022 Gartner Peer Insights Customers' Choice for IT VRM Tools to see why customers choose OneTrust Vendorpedia.

March 08, 2022

Learn more

Blog

Third-Party Risk

OneTrust becomes only IT VRM vendor to receive the Gartner Peer Insights™ Customers’ Choice Distinction for three years in a row

OneTrust has been named a Customers' Choice in the 2022 Gartner Peer Insights ‘Voice of the Customer': IT Vendor Risk Management Tools.

March 08, 2022 6 min read

Learn more

Blog

Third-Party Risk

OneTrust becomes only IT VRM vendor to receive the Gartner Peer Insights™ Customers’ Choice Distinction for three years in a row

OneTrust has been named a Customers' Choice in the 2022 Gartner Peer Insights ‘Voice of the Customer': IT Vendor Risk Management Tools.

March 08, 2022 6 min read

Learn more

White Paper

Third-Party Risk

Third-party risk: A turbulent outlook

Download this joint research report conducted by CyberRisk Alliance and Vendorpedia to understand today's third-party risk landscape.

March 02, 2022

Learn more

White Paper

Third-Party Risk

Third-party risk: A turbulent outlook

Download this joint research report conducted by CyberRisk Alliance and Vendorpedia to understand today's third-party risk landscape.

March 02, 2022

Learn more

Blog

Third-Party Risk

Answer any security questionnaire with enhanced cell detection for Questionnaire Response Automation

Introducing QRA cell detection – a powerful QRA enhancement that eases the spreadsheet-based questionnaire response process for vendors.

March 02, 2022 2 min read

Learn more

Blog

Third-Party Risk

Answer any security questionnaire with enhanced cell detection for Questionnaire Response Automation

Introducing QRA cell detection – a powerful QRA enhancement that eases the spreadsheet-based questionnaire response process for vendors.

March 02, 2022 2 min read

Learn more

Blog

Third-Party Risk

Mastering the TPRM lifecycle

Third-party risk management is key to any business. Learn how to master the TPRM lifecycle across your organization in our newest video blog!

February 14, 2022 2 min read

Learn more

Blog

Third-Party Risk

Mastering the TPRM lifecycle

Third-party risk management is key to any business. Learn how to master the TPRM lifecycle across your organization in our newest video blog!

February 14, 2022 2 min read

Learn more

Blog

Third-Party Risk

Buy-In Guide: Making the case for TPRM software

Make the business case for TPRM in your organization and get access to our TPRM buy-in guide to learn how! Read the blog to learn more.

February 04, 2022 4 min read

Learn more

Blog

Third-Party Risk

Buy-In Guide: Making the case for TPRM software

Make the business case for TPRM in your organization and get access to our TPRM buy-in guide to learn how! Read the blog to learn more.

February 04, 2022 4 min read

Learn more

eBook

Third-Party Risk

The business value of third-party risk management software

In this eBook, learn the business value of TPRM software and why all leading organizations rely on it when working with third-party vendors.

February 03, 2022

Learn more

eBook

Third-Party Risk

The business value of third-party risk management software

In this eBook, learn the business value of TPRM software and why all leading organizations rely on it when working with third-party vendors.

February 03, 2022

Learn more

Webinar

Third-Party Risk

5 Ways to step-up your business resilience with better third-party management

Join this webinar to learn best practices on how your organization can step-up business resilience with better third-party risk management.

February 02, 2022

Learn more

Webinar

Third-Party Risk

Optimizing third-party risk: enhance automation with an integrated IT risk platform

Watch our free webinar to discover how to optimize your third-party risk program and reduce manual data management with automation.

February 02, 2022

Learn more

Webinar

Third-Party Risk

5 Ways to step-up your business resilience with better third-party management

Join this webinar to learn best practices on how your organization can step-up business resilience with better third-party risk management.

February 02, 2022

Learn more

Webinar

Third-Party Risk

Optimizing third-party risk: enhance automation with an integrated IT risk platform

Watch our free webinar to discover how to optimize your third-party risk program and reduce manual data management with automation.

February 02, 2022

Learn more

Blog

Third-Party Risk

The shift to third-party management (TPM): What is TPM and why does it matter?

Third-Party Trust Management (TPTM) is the next evolution of third-party risk and is key enterprise trust strategy. Learn more in our blog!

January 25, 2022 9 min read

Learn more

Blog

Third-Party Risk

The shift to third-party management (TPM): What is TPM and why does it matter?

Third-Party Trust Management (TPTM) is the next evolution of third-party risk and is key enterprise trust strategy. Learn more in our blog!

January 25, 2022 9 min read

Learn more

Webinar

Privacy Management

2022 Third-party trust predictions and preparations

Prepare for 2022 Trends in Third-Party Risk Management and future-proof your Third-Party Trust program.

January 04, 2022

Learn more

Webinar

Privacy Management

2022 Third-party trust predictions and preparations

Prepare for 2022 Trends in Third-Party Risk Management and future-proof your Third-Party Trust program.

January 04, 2022

Learn more

Webinar

Third-Party Risk

Are your third parties a privacy compliance liability? 5 Tips to reduce your exposure

This webinar will discuss how to create a Third-Party Risk Management (TPRM) program that prioritizes privacy compliance and simplifies record-keeping.

December 31, 2021

Learn more

Webinar

Third-Party Risk

Are your third parties a privacy compliance liability? 5 Tips to reduce your exposure

This webinar will discuss how to create a Third-Party Risk Management (TPRM) program that prioritizes privacy compliance and simplifies record-keeping.

December 31, 2021

Learn more

Blog

Third-Party Risk

The future of TPRM: Third party risk management predictions for 2022

In 2021, TPRM and cybersecurity remained at the forefront of business strategy, so what's next? Learn about 2022 TPRM predictions in our blog!

December 19, 2021 5 min read

Learn more

Blog

Third-Party Risk

The future of TPRM: Third party risk management predictions for 2022

In 2021, TPRM and cybersecurity remained at the forefront of business strategy, so what's next? Learn about 2022 TPRM predictions in our blog!

December 19, 2021 5 min read

Learn more

Blog

Third-Party Risk

Build the business case: The importance of business resilience and TPRM

Learn about the impact of third-party service outages and how to stand up a TPRM-informed business resilience strategy in our latest blog.

December 16, 2021 4 min read

Learn more

Blog

Third-Party Risk

Build the business case: The importance of business resilience and TPRM

Learn about the impact of third-party service outages and how to stand up a TPRM-informed business resilience strategy in our latest blog.

December 16, 2021 4 min read

Learn more

Blog

Third-Party Risk

Working with vendors to address the Apache Log4j 2 library vulnerability

A new, critical vulnerability that impacts a popular open-source Java logging library, Apache Log4j 2 exists. Read more in our blog.

December 14, 2021 5 min read

Learn more

Blog

Third-Party Risk

Working with vendors to address the Apache Log4j 2 library vulnerability

A new, critical vulnerability that impacts a popular open-source Java logging library, Apache Log4j 2 exists. Read more in our blog.

December 14, 2021 5 min read

Learn more

eBook

GRC & Security Assurance

Vendor risk management for privacy professionals

Download the OneTrust Vendor Risk Management Handbook for an in-depth understanding of updated regulations, requirements and more.

November 17, 2021

Learn more

eBook

GRC & Security Assurance

Vendor risk management for privacy professionals

Download the OneTrust Vendor Risk Management Handbook for an in-depth understanding of updated regulations, requirements and more.

November 17, 2021

Learn more

Blog

Third-Party Risk

OneTrust Vendorpedia offers same-day support for the 2022 Shared Assessments SIG

Learn how to manage risk in a time-friendly, cost-effective way with low effort for your vendors with our SIG 2022 shared assessments support.

September 28, 2021 3 min read

Learn more

Blog

Third-Party Risk

OneTrust Vendorpedia offers same-day support for the 2022 Shared Assessments SIG

Learn how to manage risk in a time-friendly, cost-effective way with low effort for your vendors with our SIG 2022 shared assessments support.

September 28, 2021 3 min read

Learn more

Blog

Third-Party Risk

OneTrust named a Leader in the 2021 Gartner® Magic Quadrant for IT Vendor Risk Management Tools

For the third consecutive year, OneTrust is a leader in the 2021 Gartner Magic QuadrantTM for IT Vendor Risk Management Tools.

September 02, 2021 5 min read

Learn more

Blog

Third-Party Risk

OneTrust named a Leader in the 2021 Gartner® Magic Quadrant for IT Vendor Risk Management Tools

For the third consecutive year, OneTrust is a leader in the 2021 Gartner Magic QuadrantTM for IT Vendor Risk Management Tools.

September 02, 2021 5 min read

Learn more

Blog

GRC & Security Assurance

The ultimate security questionnaire guide

Implementing a consistent security questionnaire answering process will save your organization time and money. Read our guide to learn more.

Brianna Smith, Content Marketing Specialist, OneTrust | GRCP

August 17, 2021 15 min read

Learn more

Blog

GRC & Security Assurance

The ultimate security questionnaire guide

Implementing a consistent security questionnaire answering process will save your organization time and money. Read our guide to learn more.

Brianna Smith, Content Marketing Specialist, OneTrust | GRCP

August 17, 2021 15 min read

Learn more

Report

Third-Party Risk

OneTrust named a leader in​ The Forrester Wave

Read why OneTrust once again received analyst recognition The Forrester Wave: Third-Party Risk Management Platforms, Q4 2020​.

July 22, 2021

Learn more

Webinar

Third-Party Risk

Are you a trusted vendor? 10 things every customer wants to know

Access this free webinar to learn how to be a trusted vendor.

July 22, 2021

Learn more

Webinar

Third-Party Risk

Are you a trusted vendor? 10 things every customer wants to know

Access this free webinar to learn how to be a trusted vendor.

July 22, 2021

Learn more

eBook

Third-Party Risk

Mastering the third-party risk management lifecycle

Download our third-party risk management eBook and get a complete roadmap to your TPRM lifecycle.

July 13, 2021

Learn more

eBook

Third-Party Risk

Mastering the third-party risk management lifecycle

Download our third-party risk management eBook and get a complete roadmap to your TPRM lifecycle.

July 13, 2021

Learn more

Blog

GRC & Security Assurance

How AutoZone goes the extra mile with OneTrust Vendorpedia

AutoZone Goes the Extra Mile and drives TPRM operations with OneTrust Third-Party Risk Management. Learn more from Auto Zone TPRM, Ryan Walker.

July 07, 2021 3 min read

Learn more

Blog

GRC & Security Assurance

How AutoZone goes the extra mile with OneTrust Vendorpedia

AutoZone Goes the Extra Mile and drives TPRM operations with OneTrust Third-Party Risk Management. Learn more from Auto Zone TPRM, Ryan Walker.

July 07, 2021 3 min read

Learn more

eBook

GRC & Security Assurance

What you need to know when building your VRM program

Download our guide to building an effective vendor risk management program and how risk exchanges are vital to your business.

June 13, 2021

Learn more

Blog

Third-Party Risk

What is vendor risk management?

Vendor risk management (VRM) is a form of risk management that focuses on identifying and reducing risks relating to vendors.

June 09, 2021 14 min read

Learn more

Blog

Third-Party Risk

What is vendor risk management?

Vendor risk management (VRM) is a form of risk management that focuses on identifying and reducing risks relating to vendors.

June 09, 2021 14 min read

Learn more

Blog

Riesgos de terceros

¿Qué es la gestión de riesgos de terceros?

La gestión de riesgos de terceros es un método de gestión de riesgos que se centra en identificar y reducir los riesgos que están relacionados con el uso de terceros.

junio 01, 2021 6 min read

Learn more

Blog

Riesgos de terceros

¿Qué es la gestión de riesgos de terceros?

La gestión de riesgos de terceros es un método de gestión de riesgos que se centra en identificar y reducir los riesgos que están relacionados con el uso de terceros.

junio 01, 2021 6 min read

Learn more

Blog

Third-Party Risk

OneTrust acquires Shared Assessments to grow the SIG and global third-party risk standardization

Shared Assessments will remain vendor neutral post-acquistion to grow the SIG third-party risk standard globally.

May 31, 2021 4 min read

Learn more

Blog

Third-Party Risk

OneTrust acquires Shared Assessments to grow the SIG and global third-party risk standardization

Shared Assessments will remain vendor neutral post-acquistion to grow the SIG third-party risk standard globally.

May 31, 2021 4 min read

Learn more

Video

Third-Party Risk

Questionnaire Response Automation demo

Watch the demo of our Questionnaire Response Automation tool and learn how it helps vendors automatically answer any questionnaire.

April 08, 2021

Learn more

Video

Third-Party Risk

Questionnaire Response Automation demo

Watch the demo of our Questionnaire Response Automation tool and learn how it helps vendors automatically answer any questionnaire.

April 08, 2021

Learn more

Blog

Third-Party Risk

Introducing OneTrust Questionnaire Response Automation

OneTrust launches Vendorpedia Questionnaire Response Automation to support organizations in automatically answering incoming questionnaires.

January 13, 2021 3 min read

Learn more

Blog

Third-Party Risk

Introducing OneTrust Questionnaire Response Automation

OneTrust launches Vendorpedia Questionnaire Response Automation to support organizations in automatically answering incoming questionnaires.

January 13, 2021 3 min read

Learn more

Blog

GRC & Security Assurance

CCPA compliance: Your most frequent CCPA questions answered

The CCPA is only days away from taking effect, and OneTrust has all the resources you need to be CCPA ready by January 1, 2020.

December 24, 2019 24 min read

Learn more

Blog

GRC & Security Assurance

CCPA compliance: Your most frequent CCPA questions answered

The CCPA is only days away from taking effect, and OneTrust has all the resources you need to be CCPA ready by January 1, 2020.

December 24, 2019 24 min read

Learn more

Blog

Third-Party Risk

Centralizing your risk register

Companies can integrate their information across systems and data collection points to centralize their risk register and reporting efforts.

December 19, 2019 4 min read

Learn more

Blog

Third-Party Risk

Centralizing your risk register

Companies can integrate their information across systems and data collection points to centralize their risk register and reporting efforts.

December 19, 2019 4 min read

Learn more

Blog

Third-Party Risk

Maintain updated data maps with OneTrust vendor risk management

With the OneTrust Vendor Risk Management platform and data mapping, companies sustain an up-to-date data map and automate alerts and actions.

May 07, 2019 4 min read

Learn more

Blog

Third-Party Risk

Maintain updated data maps with OneTrust vendor risk management

With the OneTrust Vendor Risk Management platform and data mapping, companies sustain an up-to-date data map and automate alerts and actions.

May 07, 2019 4 min read

Learn more

Blog

Third-Party Risk

The next evolution of Third-Party Risk Management is here with OneTrust’s Vendorpedia

Scale your third-party risk program with pre-populated privacy and security profiles on over 6,000 third-party vendors in OneTrust's Vendorpedia.

March 03, 2019 3 min read

Learn more

Blog

Third-Party Risk

The next evolution of Third-Party Risk Management is here with OneTrust’s Vendorpedia

Scale your third-party risk program with pre-populated privacy and security profiles on over 6,000 third-party vendors in OneTrust's Vendorpedia.

March 03, 2019 3 min read

Learn more

Blog

Third-Party Risk

OneTrust wins Risk Management Software of the Year at the 2018 FStech Awards

The FStech Awards selected OneTrust as Risk Management Software of the Year in 2018. Thank you to the FStech Awards for this incredible honor

April 25, 2018 2 min read

Learn more

Blog

Third-Party Risk

OneTrust wins Risk Management Software of the Year at the 2018 FStech Awards

The FStech Awards selected OneTrust as Risk Management Software of the Year in 2018. Thank you to the FStech Awards for this incredible honor

April 25, 2018 2 min read

Learn more

Blog

Third-Party Risk

OneTrust joins the cloud security alliance

OneTrust joins the Cloud Security Alliance or CSA, a global leader in secure cloud computing, to simplify vendor risk management for GDPR compliance.

April 16, 2018 2 min read

Learn more

Blog

Third-Party Risk

OneTrust joins the cloud security alliance

OneTrust joins the Cloud Security Alliance or CSA, a global leader in secure cloud computing, to simplify vendor risk management for GDPR compliance.

April 16, 2018 2 min read

Learn more

eBook

Third-Party Risk

The value of the Exchange Community for customers and vendors

Learn how an exchange community of customers and vendors improves security and builds trust.

Learn more

eBook

Third-Party Risk

The value of the Exchange Community for customers and vendors

Learn how an exchange community of customers and vendors improves security and builds trust.

Learn more

Third-Party Management | Request Demo | OneTrust

Request a free demo of OneTrust Third Party Management and get personalized best practice advice from a third-party risk expert. 

Learn more

OneTrust & CSA Vendor Risk Management Tool | OneTrust

Get the OneTrust and CSA vendor risk management tool and see how to automate the entire vendor management lifecycle.

Learn more

OneTrust & CSA Vendor Risk Management Tool | OneTrust

Get the OneTrust and CSA vendor risk management tool and see how to automate the entire vendor management lifecycle.

Learn more

Third-Party Management | Request Demo | OneTrust

Request a free demo of OneTrust Third Party Management and get personalized best practice advice from a third-party risk expert. 

Learn more

Webinar

Third-Party Risk

Third-party management academy

Join this webinar series, which will focus on the four foundational pillars of Third-Party Risk Management: Automation, Compliance, Reporting, and Collaboration.

Learn more

Webinar

Third-Party Risk

Third-party management academy

Join this webinar series, which will focus on the four foundational pillars of Third-Party Risk Management: Automation, Compliance, Reporting, and Collaboration.

Learn more

Customer Story

Third-Party Risk

Rochester Regional Health

Learn how Rochester Regional Health creates a patient-centric privacy program with OneTrust third-party risk management solutions. 

3 min read

Learn more

Customer Story

Third-Party Risk

Rochester Regional Health

Learn how Rochester Regional Health creates a patient-centric privacy program with OneTrust third-party risk management solutions. 

3 min read

Learn more

Privacy Management

Atlassian JIRA

The integration between Atlassian JIRA and OneTrust offers a powerful solution for organizations that need to comply with privacy regulations and manage risk.

Learn more

Cybersecurity

Third-Party Risk

BitSight

The integration between BitSight and OneTrust Third-Party Risk is a powerful tool that can help organizations to manage third-party risk and to protect their data.

Learn more

File Storage & Sharing

Privacy Management

DocuSign

OneTrust integrates with DocuSign to automatically send eSignature envelopes and request attestation of responses from customers and vendors.

Learn more

Cybersecurity

Supplier Sustainability & Responsibility

Supply Wisdom

By using Supply Wisdom and OneTrust together, organizations can get a comprehensive view of third-party risk and take proactive steps to mitigate it.

Learn more

Privacy Management

Atlassian JIRA

The integration between Atlassian JIRA and OneTrust offers a powerful solution for organizations that need to comply with privacy regulations and manage risk.

Learn more

Cybersecurity

Third-Party Risk

Black Kite

Integrating OneTrust and BlackKite helps organizations streamline third-party risk assessments while gaining more visibility over technical, financial, and compliance risks.

Learn more

Compliance

Third-Party Risk

Bureau Van Dijk

Integrating OneTrust with Bureau van Dijk and RDC can help organizations to identify and assess risks, including financial, operational, and reputational risks.

Learn more

AML & KYC

Third-Party Risk

Dow Jones

Together, Dow Jones and OneTrust offer a powerful solution for third-party risk management, enabling organizations to reduce critical vulnerabilities, improve compliance, and build trust.

Learn more

Cybersecurity

Third-Party Risk

BitSight

The integration between BitSight and OneTrust Third-Party Risk is a powerful tool that can help organizations to manage third-party risk and to protect their data.

Learn more

Cybersecurity

Technology Risk & Compliance

ISS Corporate Solutions

ISS Corporate Solutions provides cyber risk management solutions that help organizations understand their own cyber resilience and the security posture of their vendors.

Learn more

File Storage & Sharing

Privacy Management

DocuSign

OneTrust integrates with DocuSign to automatically send eSignature envelopes and request attestation of responses from customers and vendors.

Learn more

AML & KYC

Third-Party Risk

Dun & Bradstreet

Dun & Bradstreet and OneTrust offer a powerful solution for third-party risk management by integrating data and insights to help organizations identify and monitor risks.

Learn more

Identity Access Management & Identity Verification

Consent & Preferences

SecurityScorecard

SecurityScorecard and OneTrust integrate to provide a comprehensive view of third-party cybersecurity posture and automate risk mitigation.

Learn more

Cybersecurity

Third-Party Risk

RiskRecon

RiskRecon integrates with OneTrust to provide organizations with cybersecurity scores and more, which can be pulled on a scheduled basis.

Learn more

Cybersecurity

Third-Party Due Diligence

Recorded Future

Stay up-to-date on the latest threat intelligence about your organizations third-party vendors by integrating OneTrust with Recorded Future.

Learn more

Cybersecurity

Third-Party Risk

Upguard

UpGuard and OneTrust Third-Party Risk Management integrate so organizations have a comprehensive view of third-party risk to help prevent data breaches.

Learn more

Analytics

Privacy Management

Tableau

Ingest OneTrust data into Tableau for customized dashboards and analytics to drive insight into the privacy program’s activity and create custom reports.

Learn more

Cybersecurity

Supplier Sustainability & Responsibility

Supply Wisdom

By using Supply Wisdom and OneTrust together, organizations can get a comprehensive view of third-party risk and take proactive steps to mitigate it.

Learn more

Compliance

Privacy Management

LexisNexis Risk Solutions

The integration with LexisNexis Risk Solutions and OneTrust can help complete consumer requests requirements under the CCPA and other state privacy laws.

Learn more

Herramienta de gestión de riesgos de terceros de OneTrust y la CSA | OneTrust

Hazte con la herramienta de gestión de riesgos de terceros de OneTrust y de la CSA, y aprende a automatizar todo el ciclo de vida de la gestión de proveedores.

Learn more

Outil de gestion des risques fournisseur OneTrust-CSA | OneTrust

Avec l’outil OneTrust-CSA, découvrez comment automatiser l’ensemble du cycle de vie de la gestion de vos fournisseurs.

Learn more

Gestion des risques tiers | Demander une démo | OneTrust

Demandez une démonstration gratuite de la solution OneTrust pour la gestion des tiers et obtenez des conseils personnalisés d’un expert sur les bonnes pratiques du secteur. 

Learn more

Gestión de riesgos de terceros | Solicitar demostración | OneTrust

Solicita una demostración gratuita de Gestión de riesgos de terceros de OneTrust y recibe consejos personalizados sobre prácticas recomendadas de un experto. 

Learn more

Customer Story

Third-Party Risk

PUMA

Multinational sports brand reinvents vendor risk management with collaborative, organization-wide approach.

Learn more

Customer Story

Third-Party Risk

PUMA

Multinational sports brand reinvents vendor risk management with collaborative, organization-wide approach.

Learn more

Drittparteienrisikomanagement | Demo anfordern | OneTrust

Fordern Sie eine kostenfreie Demo des OneTrust Drittparteienrisikomanagements an und lassen Sie sich von einem Experten für Drittparteirisiken persönlich beraten. 

Learn more

OneTrust-CSA Lieferantenrisikomanagement-Tool | OneTrust

Holen Sie sich das OneTrust-CSA Lieferantenrisikomanagement-Tool und erfahren Sie, wie Sie den gesamten Lebenszyklus des Lieferantenmanagements automatisieren.

Learn more

Blog

Drittparteienrisiken

Aufbau eines effektiven Third Party Managements

Dieser Blog diskutiert, wie ein effektives Third Party Management etabliert werden kann, das Sicherheit für Datenschutz-, Sicherheits-, Ethik- und ESG-Teams schafft.

5 min read

Learn more

Gestão de Riscos de Terceiros | Solicitar Demonstração | OneTrust

Solicite uma demonstração gratuita da ferramenta de Gestão de Riscos de Terceiros da OneTrust e obtenha o aconselhamento personalizado de um especialista sobre boas práticas nesse campo. 

Learn more

Ferramenta de Gerenciamento de Riscos de Fornecedores OneTrust-CSA | OneTrust

Obtenha a ferramenta de gerenciamento de riscos de fornecedores OneTrust-CSA e saiba como automatizar todo o ciclo de vida da gestão de fornecedores.

Learn more

Third-Party Management | Richiedi una demo | OneTrust

Richiedi una demo gratuita di Third Party Management di OneTrust e ricevi pratiche consigliate personalizzate da un esperto dei rischi da parte di terzi. 

Learn more

Strumento Gestione del rischio fornitore OneTrust e CSA | OneTrust

Ottieni lo strumento Gestione del rischio fornitore OneTrust e CSA e scopri come automatizzare l'intero ciclo di vita della gestione dei fornitori.

Learn more

Third-Party Management | Richiedi una demo | OneTrust

Richiedi una demo gratuita di Third Party Management di OneTrust e ricevi pratiche consigliate personalizzate da un esperto dei rischi da parte di terzi. 

Learn more

Strumento Gestione del rischio fornitore OneTrust e CSA | OneTrust

Ottieni lo strumento Gestione del rischio fornitore OneTrust e CSA e scopri come automatizzare l'intero ciclo di vita della gestione dei fornitori.

Learn more

Drittparteienrisikomanagement | Demo anfordern | OneTrust

Fordern Sie eine kostenfreie Demo des OneTrust Drittparteienrisikomanagements an und lassen Sie sich von einem Experten für Drittparteirisiken persönlich beraten. 

Learn more

OneTrust-CSA Lieferantenrisikomanagement-Tool | OneTrust

Holen Sie sich das OneTrust-CSA Lieferantenrisikomanagement-Tool und erfahren Sie, wie Sie den gesamten Lebenszyklus des Lieferantenmanagements automatisieren.

Learn more

Blog

Drittparteienrisiken

Aufbau eines effektiven Third Party Managements

Dieser Blog diskutiert, wie ein effektives Third Party Management etabliert werden kann, das Sicherheit für Datenschutz-, Sicherheits-, Ethik- und ESG-Teams schafft.

5 min read

Learn more

Gestão de Riscos de Terceiros | Solicitar Demonstração | OneTrust

Solicite uma demonstração gratuita da ferramenta de Gestão de Riscos de Terceiros da OneTrust e obtenha o aconselhamento personalizado de um especialista sobre boas práticas nesse campo. 

Learn more

Ferramenta de Gerenciamento de Riscos de Fornecedores OneTrust-CSA | OneTrust

Obtenha a ferramenta de gerenciamento de riscos de fornecedores OneTrust-CSA e saiba como automatizar todo o ciclo de vida da gestão de fornecedores.

Learn more

Testimonio de cliente

Riesgos de terceros

PUMA optimiza el cumplimiento normativo con la gestión ágil de riesgos de terceros

La marca deportiva internacional reinventa la gestión de riesgos de terceros con un enfoque colaborativo en toda la organización.

Learn more

Testimonio de cliente

Riesgos de terceros

PUMA optimiza el cumplimiento normativo con la gestión ágil de riesgos de terceros

La marca deportiva internacional reinventa la gestión de riesgos de terceros con un enfoque colaborativo en toda la organización.

Learn more

Témoignage client

Gestion des risques tiers

PUMA

Une multinationale du sport réinvente la gestion des risques tiers avec une approche collaborative à l’échelle de l’organisation.

Learn more

Storia del cliente

Rischi da parte di terzi

Gruppo PUMA

Una multinazionale dello sport reinventa la gestione dei rischi legati ai fornitori con un approccio collaborativo a livello di organizzazione

Learn more

Storia del cliente

Rischi da parte di terzi

Gruppo PUMA

Una multinazionale dello sport reinventa la gestione dei rischi legati ai fornitori con un approccio collaborativo a livello di organizzazione

Learn more

Témoignage client

Gestion des risques tiers

PUMA

Une multinationale du sport réinvente la gestion des risques tiers avec une approche collaborative à l’échelle de l’organisation.

Learn more

OneTrust Partner Webinar: Overview of Q1 UCPM & Q2 TPRM Sales Plays Webinar | Resources | OneTrust

Learn more

OneTrust Partner Webinar: Overview of Q1 UCPM & Q2 TPRM Sales Plays Webinar | Resources | OneTrust

Learn more

Compliance

Third-Party Risk

Valence Security

Valence Security and OneTrust have partnered to create a seamless integration between SSPM and TPRM, bridging the gap between risk managers and security analysts.

Learn more

Compliance

Third-Party Risk

Valence Security

Valence Security and OneTrust have partnered to create a seamless integration between SSPM and TPRM, bridging the gap between risk managers and security analysts.

Learn more

Analytics

Privacy Management

Tableau

Ingest OneTrust data into Tableau for customized dashboards and analytics to drive insight into the privacy program’s activity and create custom reports.

Learn more

Cybersecurity

Third-Party Risk

Upguard

UpGuard and OneTrust Third-Party Risk Management integrate so organizations have a comprehensive view of third-party risk to help prevent data breaches.

Learn more

Compliance

Privacy Management

LexisNexis Risk Solutions

The integration with LexisNexis Risk Solutions and OneTrust can help complete consumer requests requirements under the CCPA and other state privacy laws.

Learn more

Cybersecurity

Technology Risk & Compliance

ISS Corporate Solutions

ISS Corporate Solutions provides cyber risk management solutions that help organizations understand their own cyber resilience and the security posture of their vendors.

Learn more

Compliance

Third-Party Risk

Bureau Van Dijk

Integrating OneTrust with Bureau van Dijk and RDC can help organizations to identify and assess risks, including financial, operational, and reputational risks.

Learn more

AML & KYC

Third-Party Risk

Dun & Bradstreet

Dun & Bradstreet and OneTrust offer a powerful solution for third-party risk management by integrating data and insights to help organizations identify and monitor risks.

Learn more

AML & KYC

Third-Party Risk

Dow Jones

Together, Dow Jones and OneTrust offer a powerful solution for third-party risk management, enabling organizations to reduce critical vulnerabilities, improve compliance, and build trust.

Learn more

Cybersecurity

Third-Party Due Diligence

Recorded Future

Stay up-to-date on the latest threat intelligence about your organizations third-party vendors by integrating OneTrust with Recorded Future.

Learn more

Cybersecurity

Third-Party Risk

Black Kite

Integrating OneTrust and BlackKite helps organizations streamline third-party risk assessments while gaining more visibility over technical, financial, and compliance risks.

Learn more

Cybersecurity

Third-Party Risk

RiskRecon

RiskRecon integrates with OneTrust to provide organizations with cybersecurity scores and more, which can be pulled on a scheduled basis.

Learn more

Identity Access Management & Identity Verification

Consent & Preferences

SecurityScorecard

SecurityScorecard and OneTrust integrate to provide a comprehensive view of third-party cybersecurity posture and automate risk mitigation.

Learn more

Customer Story

Third-Party Risk

Southern Veterinary Partners (SVP)

See how this Southern Veterinary Partners improved third-party risk management and enhanced its security and efficiency.

Learn more

Customer Story

Third-Party Risk

Southern Veterinary Partners (SVP)

See how this Southern Veterinary Partners improved third-party risk management and enhanced its security and efficiency.

Learn more

Customer Story

Third-Party Due Diligence

Progreso

Learn how OneTrust helped Progress build a robust compliance deparment and fostered employee trust.

Learn more

Customer Story

Third-Party Due Diligence

Progreso

Learn how OneTrust helped Progress build a robust compliance deparment and fostered employee trust.

Learn more

Gestión de riesgos de terceros | Solicitar demostración | OneTrust

Solicita una demostración gratuita de Gestión de riesgos de terceros de OneTrust y recibe consejos personalizados sobre prácticas recomendadas de un experto. 

Learn more

Herramienta de gestión de riesgos de terceros de OneTrust y la CSA | OneTrust

Hazte con la herramienta de gestión de riesgos de terceros de OneTrust y de la CSA, y aprende a automatizar todo el ciclo de vida de la gestión de proveedores.

Learn more

GRC e garanzia di sicurezza

Navigare la conformità al NIS2 con OneTrust

Partecipa al nostro webinar il 24 ottobre alle 11:00 per approfondire i principali requisiti della Direttiva NIS2 e il suo impatto sul territorio italiano.

Learn more

GRC e garanzia di sicurezza

Navigare la conformità al NIS2 con OneTrust

Partecipa al nostro webinar il 24 ottobre alle 11:00 per approfondire i principali requisiti della Direttiva NIS2 e il suo impatto sul territorio italiano.

Learn more

Webinar

Third-Party Risk

Building a strong security posture: managing compliance, risk and business engagement in a dynamic landscape

Watch our webinar and gain insight on how to navigate InfoSec's evolving compliance landscape.

Learn more

Webinar

Third-Party Risk

Building a strong security posture: managing compliance, risk and business engagement in a dynamic landscape

Watch our webinar and gain insight on how to navigate InfoSec's evolving compliance landscape.

Learn more