Webinar

< Back to all webinars

Time is Money: Accelerating Vendor Risk Assessment Times with Exchanges

Jun 27 / IT GRC Forum

Organizations are projected to share 41% of critical data with third parties over the next five years, creating a surge in vendor evaluation tasks. Ponemon research indicates that third parties spend an average of 15,000 hours annually on assessments, often slowed by lengthy, redundant processes. This growing complexity makes it essential for organizations to find more efficient approaches to third-party risk management.


This on-demand webinar explores the challenges of legacy assessment systems and highlights the advantages of implementing a risk Exchange. Attendees will learn how to streamline the vendor assessment process, reduce redundancy, and save time for both assessors and vendors. Practical strategies for overcoming common obstacles and fostering internal adoption of a risk Exchange will also be discussed, emphasizing both immediate and long-term benefits.


Key takeaways include understanding the volume and duplication issues in traditional assessments, improving efficiency through process transformation, and measuring success using key metrics such as time savings, accelerated purchasing decisions, and enhanced security assurance. This session equips organizations to optimize third-party risk programs while maintaining strong security standards.

Industry Leaders

About Our Experts

Colin Whittaker

Founder and Director Informed Risk Decisions Ltd
Colin has over 15 years of experience shaping payment risk and security strategies across Europe and the US. He has led PCI compliance initiatives, coordinated responses to cardholder data breaches, and introduced innovative programs providing compliance relief. He now offers cybersecurity risk consultancy globally and shares insights at major industry events.

Shane Hasert

Director of Threat Research and Cyber Security Standards at ProcessUnity
Shane brings 35 years of cybersecurity expertise, with 18 years focused on third-party risk management and auditing. He has led security programs across multiple industries, combining operational experience with advanced certifications in information security, risk, and privacy. Shane delivers practical insights on managing third-party risks effectively in complex organizational environments.

Steve Tobias

Lead Client Success Advisor at RiskRecon
Steve leverages over 20 years of cybersecurity and risk management experience to help organizations optimize third-party cyber risk programs. He specializes in integrating vendor security ratings and maturing risk frameworks across industries, providing actionable guidance to strengthen organizational security posture and align programs with strategic business objectives.

Shiven Patel

Director of Product Management at OneTrust
Shiven supports companies in reducing third-party risks while fostering trust with vendors. By connecting privacy, GRC, ethics, and ESG processes, he helps organizations create integrated risk management approaches that align business operations with ethical standards, drive collaboration, and promote sustainable, trustworthy practices across enterprise ecosystems.