Webinar

< Back to all webinars

Industry Leaders

About Our Experts

Colin Whittaker

Founder of Informed Risk Decisions Ltd.

Colin Whittaker is a cybersecurity risk consultant and Founder of Informed Risk Decisions Ltd. A PCI Industry alumnus, he has over 20 years of experience in payment security, including senior roles at APACS and Visa Europe, where he led PCI compliance strategies and breach response initiatives across Europe.

Jon Ehret

Vice President, Strategy and Risk at RiskRecon
Jon Ehret brings 20+ years of technology and risk experience, building and managing third-party risk programs in finance and healthcare. Formerly leading BlueCross BlueShield of WNY’s TPR program, he co-founded the Third Party Risk Association and holds CISSP, CISA, and CRISC certifications.

James McQuiggan

Security Awareness Advocate at KnowBe4
James McQuiggan has 20+ years in cybersecurity, formerly serving at Siemens Gamesa Renewable Energy. He is a part-time faculty professor at Valencia College, leads (ISC)² Central Florida Chapter, and volunteers in cyber safety education programs, educating thousands on information security and awareness best practices.

Matt Bianchi

Lead Product Manager, Solutions & Ecosystem at ProcessUnity
Matt Bianchi oversees solutions and partner ecosystem at ProcessUnity, helping organizations streamline risk and compliance programs. He integrates industry-leading solutions and content providers, enabling effective, scalable third-party risk management and governance across the ProcessUnity platform.

David Stapleton

Vice President & CISO at CyberGRX
David Stapleton, CISSP, is VP & CISO at CyberGRX with over a decade of cybersecurity risk experience. He previously led risk and compliance functions at HHS for the FDA and Indian Health Service, focusing on managing cybersecurity risk in both public and private sectors.

Cornerstones to Strengthen Your Third-Party Risk Management Program

May 24 / IT GRC Forum

Supply chain attacks are on the rise, with 64% of businesses affected in the past year, and EU cybersecurity authorities predicting a fourfold increase in supplier attacks. Third-party breaches can lead to financial losses, operational downtime, compromised sensitive data, reputational damage, regulatory violations, and legal liabilities.

A robust third-party risk management (TPRM) program is essential to mitigate these risks while improving the onboarding, management, and oversight of vendors. This expert panel explores practical strategies for building a strong TPRM program, including establishing high-quality, flexible reporting, maintaining a centralized repository of all third-party vendors, assessing risk potential and tiering exposure, and developing security scorecards to address risks by priority.

Attendees will also learn best practices for continuous monitoring, optimization, and process improvement, ensuring that TPRM programs remain effective as the threat landscape evolves. Join us to gain actionable insights that strengthen vendor security, reduce organizational exposure, and enhance operational resilience in today’s complex supply chain environment.