Vendor & Third Party Risk USA

Innovative Best Practice for Managing Vendor and Third Party Risk Beyond Compliance
3rd Annual

Vendor & Third Party Risk USA

June 5-6, 2018

Key Topics Addressed in 2017

Risk Based Approaches
Reviewing the evolution of risk based approaches beyond just compliance

Cross Jurisdictional Sourcing
Understanding requirements and limitations across jurisdictions & global regulation

Maturing governance frameworks to increase accountability

Vendor Assessments
Reviewing techniques for vendor assessments for a unified approach across the industry

Lines of Defence
Reviewing where vendor risk sits in a three lines of defence model

Intragroup Agreements
Managing intragroup agreements to the same level as external third parties

Cyber and IT Security
Understanding threats and vulnerabilities across the cyber and IT landscape

Evolving cloud storage understanding and moving towards more reliance on the cloud

Third Party Risk of the Future
Increasing best practices and innovative drivers to push beyond regulatory compliance

Find our Vendor Risk thought-leadership articles here. These articles feed from our much larger Risk Insights section of our website which provides you with thought-leadership, white papers, articles and more across risk and regulation.

12th July 2017

The complete guide to building your vendor risk management program

13th June 2017

Effective review of regulatory risk and financial health of service providers

13th June 2017

Data protection and security through improved risk assessments and monitoring approaches

1st June 2017

How third parties impact cyber resiliency

1st June 2017

Driving business value from a 3rd party risk management program

16th May 2017

Keeping third party risk first on the cyber risk list

15th May 2017

Beneficial ownership – have you got it right?

9th May 2017

Advancing internal/intragroup agreements to the same level of rigor as external third party partnerships

9th May 2017

The role of the vendor and third party risk manager in sanctions and financial crime prevention

12th April 2017

Scottrade Bank’s breach underlines third-party vendor risk

12th April 2017

Ensuring effective due diligence relative to the risk and complexity for third party selection

21st March 2017

Implementing effective governance operating models and incorporating board oversight

2nd March 2017

Innovative vendor management beyond compliance

5th January 2017

The development of third party risk management practices

3rd June 2016

How to validate the security maturity of your third party vendors

The Center For Financial Professionals recently collaborated with MyComplianceOffice to conduct research with close to 250 relevant professionals to identify the development of third party risk management practices to provide the industry with a better view of the current issues and an understanding of how our peers are overcoming the challenges in the sector.

Want to work with the Center for Financial Professionals on the next research report? Contact today to discuss how we research over 450,000 risk professionals.

2017 Co-Sponsors


Aravo delivers market-leading SaaS solutions for managing third party risk and compliance at scale.

We help Global 2000 companies protect their business value and reputation by managing the risks associated with third parties and suppliers, and to build business value by ensuring that their third party relationships are optimized.

Aravo has assembled unique domain expertise and best practice approaches from more than 16 years of delivering successful implementations to global companies with the most complex supply and third party networks in the world.

Leading brands count on Aravo for end-to-end enterprise third party risk management together with specialist applications to support anti-bribery and anti-corruption, data privacy and security, responsible sourcing, and registration and qualification/know your supplier programs.

Providing unrivalled regulatory agility and ease-of-use, together with actionable executive reporting, Aravo supports a user base of more than 95,000 corporate users and 4 million third party users in 33 languages and 154 countries. Aravo is headquartered in San Francisco, with offices and partners across the US, Europe and Asia.

BitSight Technologies

BitSight Technologies is transforming how companies manage information security risk with objective, evidence-based security ratings. The company’s Security Rating Platform continuously analyzes vast amounts of external data on security behaviors in order to help organizations manage third party risk, benchmark performance, and assess and negotiate cyber insurance premiums. For more information, please visit or follow us on Twitter (@BitSight).

Bureau van Dijk

Certainty is a highly prized commodity in business. Data might be getting bigger all the time, but this only makes extracting value from it more difficult.

Bureau van Dijk captures and treats private company information for better decision making and increased efficiency.

With information on over 200 million companies, we are the resource for company data. A key benefit of our information is how simple we make it to compare companies internationally.
Our information includes:

– What companies do, how they’re performing and the people that run them
– Financial data, legal entity details, M&A activity and news
– Corporate structures and ownership

You can access our information via a range of interfaces that are designed to help different business challenges and streamline workflows. Many of our customers blend our information with their own internal data for superior insight.

Register for your free trial at


CyberGRX provides the most comprehensive third-party cyber risk management platform to cost-effectively identify, assess, mitigate and monitor an enterprise’s risk exposure across its entire partner ecosystem. Through automation and advanced analytics, the CyberGRX solution enables enterprises to collaboratively mitigate threats presented from their increasing interdependency on vendors, partners and customers. CyberGRX is based in Denver, CO.

Grant Thorton

Grant Thornton LLP’s Risk Advisory Services works to help protect and drive enterprise value for our clients. We aim to develop and deploy business strategies that align with your approach to risk and your organization’s strategic priorities. We bring expertise in creating risk management programs and holistic solutions to address strategic, operational, regulatory, compliance and cyber risk inefficiencies.

Third party risk management is an area of growing concern today. Organizations rely on third parties for a variety of reasons – cost savings, revenue enhancement, or increased expertise to gain a competitive edge. While it is true third parties can help realize many business benefits, they can also introduce significant risks. These risks may include failure to protect sensitive company and client data, inability to meet business operational objectives, failure to meet your organization’s compliance requirements, or cause reputational damage based on how your third party is perceived in the industry. If these risks aren’t properly managed, it could lead to regulatory fines and penalties, lost customers or decreased revenue. Learn more about our work and how we protect value at

Grant Thornton LLP is the US member firm of Grant Thornton International Ltd, one of the world’s leading organizations of independent audit, tax and advisory firms.

IHS Markit

IHS Markit (Nasdaq: INFO) is a world leader in critical information, analytics and solutions for the major industries and markets that drive economies worldwide. The company delivers next-generation information, analytics and solutions to customers in business, finance and government, improving their operational efficiency and providing deep insights that lead to well-informed, confident decisions. IHS Markit has more than 50,000 key business and government customers, including 85 percent of the Fortune Global 500 and the world’s leading financial institutions. Headquartered in London, IHS Markit is committed to sustainable, profitable growth.


Opus was founded on a simple premise: that faster, better decisions in compliance and risk management could give businesses an extraordinary advantage in the marketplace.

Today, the world’s most respected, global corporations rely on Opus to free their business from the complexity and uncertainty of managing customer, vendor, and third-party risks.

By combining the most innovative SaaS platforms with unparalleled data solutions, Opus turns information into action so your business thrives.


Prevalent is the leader in third-party risk management and cyber threat intelligence, helping global organizations manage and monitor the security threats and risks associated with third and fourth-party vendors. With the release of Prevalent Synapse™, organizations now have a purpose-built, unified platform that reduces both risk and cost in a shared assessment model, leveraging standardized content, automation, and threat intelligence.


SecurityScorecard provides the most accurate security risk rating for any organization worldwide. The proprietary SaaS platform helps enterprises gain operational command of the security posture for themselves and across all of their partners and vendors. It provides continuous, non-intrusive monitoring for any organization including third and fourth parties. The platform offers a breadth and depth of critical data points not available from any other service provider including a broad range of risk categories such as Application Security, Malware, Patching Cadence, Network Security, Hacker Chatter, Social Engineering, and Passwords Exposed.

2017 Luncheon Sponsor

Compliance Education Institute

Compliance Education Institute will be participating at the Vendor & Third Party Risk USA Congress.

2017 Exhibitor


ProcessUnity’s cloud-based solutions help organizations of all sizes automate their risk and compliance programs. Our highly configurable, easy-to-use tools significantly reduce manual administrative tasks, allowing customers to spend more time on strategic risk mitigation. As a software-as-a-service technology, ProcessUnity deploys quickly with minimal effort from customers and their IT resources. The inherent efficiency our technology delivers faster, better results, and the ability to scale governance, risk, and compliance programs over time. ProcessUnity’s suite of applications includes Third-Party Risk Management, Policy and Procedure Management, Enterprise Risk Management, Regulatory Compliance Management, Product and Service Offer Management, and more. Learn more at


Can your organization contribute at our Vendor & Third Party Risk USA Congress?

Please contact the Center for Financial Professionals today to discuss how we can deliver your thought-leadership at the event, help you generate leads, and provide you with unique networking and branding opportunities. Below is an outline of what we can offer, but please contact or call us on +44 (0)20 7164 6582 where a member of the team will be happy to tailor the right package for you.

Media Publications

We are happy to support publications, associations and organisations at this event. From a simple company listing with your logo to taking advantage of some of our sponsor benefits listed above. To discuss a media partnership further please email or call +44 (0)20 7164 6582.

Pre-agenda Rate
Registrations before the agenda is announced
Register Now
$999 Register

Should you have any questions regarding registering, please contact the Center for Financial Professionals, please contact us on +1 888 677 7007 (US) or +44 (0)20 7164 6582, or email

Group Bookings:

Group rates are available for 3 or more attendees from the same organisation, when registering at the same time. The current rate allows every third colleague to come along for half price! or a fifth colleague to attend for free

Other ways to register

Save time – Register by email

Simply email us your e-signature – and we will do the rest for you!

2. Contact Us Directly

3. Download the PDF Registration Form

Keep Updated


Interested in Vendor Risk Management but not ready to register? Click here to keep updated.

2017 Co-Sponsors:

Luncheon Sponsor:


Connect With Us | #VendorRiskUSA

TwitterLinkedInFacebookYouTubephone icon 50px