Webinar

< Back to all webinars

Industry Leaders

About Our Experts

Colin Whittaker

Founder and Director Informed Risk Decisions Ltd

Colin is a leading payments security expert with extensive experience shaping global risk strategy. A former PCI SSC Board of Advisors member, he drove major security and compliance initiatives at APACS and Visa Europe. Now an independent consultant, he advises diverse organizations and frequently speaks and publishes on cybersecurity and information risk.

Neal Roylance

Director of Security Research, Third-Party Risk & Cybersecurity Leader

Neal Roylance is Director of Security Research at RiskRecon, a Mastercard company. With 17+ years securing large financial institutions as a CISO and security director, he brings deep expertise in program governance, engineering, and architecture. Neal now delivers objective security assessments that strengthen third-party risk management for global organizations.

Matthew Bianchi

Lead Product Manager, Risk & Compliance Solutions Innovator

Matthew Bianchi is Lead Product Manager for Solutions and Ecosystem at ProcessUnity. He has helped hundreds of organizations streamline risk and compliance programs and drives the development of advanced integrations with leading content providers. His work shapes ProcessUnity’s solution strategy and strengthens enterprise risk management capabilities.

Matthew Moog

General Manager of Third-Party Risk, Global TPRM Expert

Matthew Moog is General Manager of Third-Party Risk at OneTrust. He guides companies through TPRM implementations aligned with major standards and regulations. Previously, he spent 18 years at EY leading global TPRM offerings. A CISA, he holds a BS in Management Information Systems from Rensselaer Polytechnic Institute.

Adam Rosen

VP of Product Strategy, Data Security & Privacy Expert

Adam Rosen is Vice President of Product Strategy at Stealthbits Technologies. A recognized expert in data security and privacy, he helps organizations implement effective controls and compliance programs. He oversees Stealthbits’ global data security product portfolio, supporting enterprises in protecting their most sensitive and mission-critical information.

Aligning Third-Party Risk Controls to Your Security Framework

Apr 21 / IT GRC Forum

According to the Ponemon Research Institute, 53% of organizations experienced at least one third-party breach in the past two years, with an average cost of $7.5 million. Despite this rising risk, most companies still operate with immature third-party risk management programs. As cyber threats continue to evolve, more organizations are investing heavily in cybersecurity and adopting trusted frameworks such as NIST and ISO to strengthen supply chain security and improve overall risk maturity.

However, many organizations have complex environments that require elements from multiple frameworks to achieve full coverage. This CPE webinar explores how to leverage and combine best practices from different third-party risk frameworks to build a more resilient and adaptable risk program.

You will learn how to establish and assess supply chain risk processes, strengthen contracts with vendors, evaluate third-party performance through audits and controls testing, and conduct coordinated response and recovery exercises. Join our experts to gain practical guidance for reducing supply chain exposure and building a future-ready third-party risk strategy.