Webinar

< Back to all webinars
Industry Leaders

About Our Experts

Colin Whittaker

 Founder and Director Informed Risk Decisions Ltd
Colin has over 15 years of experience advancing payment risk and security strategies in Europe and the US. He led PCI compliance initiatives, coordinated responses to cardholder data breaches, and introduced innovative compliance programs. Now independent, he provides cybersecurity risk consultancy and shares insights at major global industry events.

Chris Strand

Global General Manager of Compliance at Sevco Security
Chris brings over 25 years of expertise in technical security, compliance, and risk management. He has built and led cyber-compliance programs, specializing in intelligence-based global risk frameworks. Proficient in HIPAA, NERC CIP, NIST CSF, GDPR, and PCI standards, he focuses on creating robust, regulatory-aligned security and compliance initiatives.

Val Manahor

Director, Client Success and Engagement at RiskRecon
Val has 20+ years of experience designing and implementing enterprise risk, third-party risk, and GRC programs. She helps organizations mature their third-party risk processes through continuous monitoring strategies and provides advisory support for compliance and regulatory initiatives across various industries, ensuring alignment with organizational objectives and risk management best practices.

Gary W. Phipps

Vice President Strategy & Business Transformation, GRCP CTPRP, at ProcessUnity
Gary has over two decades of experience supporting risk management, regulatory compliance, and internal control programs. He has advised Fortune 50 organizations, government entities, and the DOD, helping them design and implement compliant, effective programs. His expertise spans finance, healthcare, defense, and higher education sectors.

Bob Ertl

Sr. Director, Product Marketing at Kiteworks
Bob has 20+ years in enterprise software marketing and consulting, focusing on compliance, security, and data analytics. He has successfully launched business intelligence and data management solutions for global clients, leading implementations across industries and driving adoption of structured and unstructured content management solutions.

Key Steps to Implement Continuous Controls Monitoring for Third Parties

Sep 21 / IT GRC Forum

In today’s interconnected business environment, managing risks from third-party relationships is essential for organizational success. Continuous Controls Monitoring (CCM) offers a proactive approach, enabling organizations to continuously evaluate controls, compliance measures, and the effectiveness of third-party risk management programs in real time.


This webinar explores practical strategies for implementing CCM to enhance third-party risk oversight. Attendees will learn why traditional point-in-time assessments are no longer sufficient and how CCM provides actionable insights into third-party control performance. The session covers step-by-step guidance for establishing a robust CCM program, including defining control objectives, selecting appropriate monitoring techniques, and implementing automated systems.


Participants will also discover best practices for assessing third-party controls, aligning control evaluation with CCM principles, and addressing gaps and non-compliance in real time. By leveraging CCM, organizations can strengthen risk mitigation efforts, improve compliance, and foster stronger, more reliable relationships with third-party vendors.