Vendor & Third Party Risk EMEA

2nd Annual

Vendor & Third Party Risk EMEA

Reviewing evolving vendor and third party risk processes and best practices for effective management, oversight and compliance

CPD Certified Logo

Key Topics To Be Addressed

Global Regulation
Reviewing global regulatory scrutiny and varying interpretations across jurisdictions

Due Diligence
Best practice for oversight and control of supply chain from pitch to termination

Data Protection
Overview of GDPR regulation and ensuring data security across the supply chain

Cyber Security
The cyber security landscape and how to ensure resilience when overseeing vendor security practices

Risk Assessment
Building out an effective end-to-end risk assessment framework

Third Parties Beyond Vendors
Oversight and control of non-traditional vendors

Modern Slavery Act
First year submissions and ensuring year-on-year compliance

Vendor Assessments
Building out an industry wide utility to increase efficiency

The Future of Outsourcing
Industry progression and impact of technological advances

Hear from more than 20 senior vendor, third party and supplier risk professionals including: 

James Cay

James Cay Headshot

Global Chief Procurement Officer

BNY Mellon

Amanda Earnshaw

Amanda Earnshaw headshot

Head of Procurement

Royal Sun Alliance

Fabio Torrisi

Fabio Torrisi Headshot

Global Head of Vendor Management


Gary Carter

Gary Carter Headshot

Head of BDC EMEA and Switzerland Planning & Execution

Credit Suisse

Julie Hubbard

Julie Hubbard Headshot copy

Operations Strategic Director

One Savings Bank

Joe Bakowski

Joe Bakowski Headshot

Head of Procurement and Supplier Management

Metro Bank PLC

Day One | 6th June | London

08:00 Morning Registration & Coffee

08:50 Chair’s Opening Remarks

Anna Mazzone, Managing Director, International. Global Head of Financial Services, Aravo Solutions

09:00 Reviewing the increasing global regulatory scrutiny on third party risk and varying interpretations across jurisdictions

  • What constitutes a third party across jurisdictions
  • Rules from country to country and cost of compliance with each
  • Managing internal and external sourcing
  • Shift to satisfying regulator rather than level of risk
  • Impact of US regulators: Prescriptive definitions
  • Raising the bar across firm or adopting a two tiered method
  • Industry standardisation: Closing the interpretation gap

Victoria Munoz-Titos, EMEA Head of Risk and Control Services, AIG
Tom Garrubba, Senior Director, The Santa Fe Group/Shared Assessments
David Maplesden, Executive Director, Workforce Strategy and Sourcing Framework, UBS

09:50 Maintaining effective oversight and control of the entire supply chain to ensure standards and policies are met

  • Risk exposures to consider: Identifying exposures before they become a real issue
  • Supplier relationship management
  • Oversight and control for large Vs. small suppliers: How far to go
  • Identifying service and risks associated rather than focus on suppliers
  • Material activity outsourcing accountability
    • Transparency of supplier supply chain
  • Governance to ensure in line with regulatory legislative and customer obligations

Julie Hubbard, Director Strategic Operations, One Savings Bank
Nitin Joshi, Senior Manager Quality & Vendor Control, One Savings Bank

10:40 Morning Refreshment Break & Networking

11:10 Developing an effective risk appetite framework for third party risk management to ensure strategic objectives are met

  • How to define risk appetite for third party risk management
  • Bringing all-encompassing statements in
  • Right level of activity and assurance to meet regulatory standards
  • Holistic view to transfer into operational process

Victoria Munoz-Titos, EMEA Head of Risk and Control Services, AIG

11:50 Performing effective due diligence and on-going performance management processes from pitch to termination

  • Aligning SMEs on due diligence approach
  • Level of due diligence for renewals
  • Who owns and mitigates the risk around supplier due diligence
  • Level of due diligence on new Vs. existing vendors
  • Third parties conducting supplier due diligence

Sue Scott-Douglas, Head of Technology Supplier Management, Barclays

12:30 Lunch Break & Networking

13:30 Data protection and security through improved risk assessments and monitoring approaches

  • Regulatory environment surrounding third-party relationships and risk management
  • Categorisation based on specific data protection risks
  • “Following the data” enablement of a risk-based management effort
  • Hosting data across jurisdictions
  • Monitoring strategies including onsite access and third-party data quality
  • Post-termination risk management

Michele Sullivan, Partner, Crowe Horwath
Michael Lucas, Senior Manager, Crowe Horwath

14:10 Preparing for the GDPR and its potential impacts: How the GDPR will work in everyday interactions with suppliers 

  • Handling of personal data by third parties – who is calling the shots?
  • Demonstrating and documenting compliance – what is new under GDPR?
  • Impact on InfoSec practices
  • GDPR impact for financial institutions and third party
  • Building and updating contracts: Inventory of all contracts to include clauses

Yasmin Durrani, Data Protection Officer, Zurich Insurance plc

14:50 Reviewing the cyber security landscape and ensuring resilience by managing and overseeing third party security practices

  • Integration with vendor to protect firewall
  • What the regulators expect
  • Due diligence: Assessing vendors for provisions and continuous reviews
  • Ensuring the right analytics and skills to protect information
  • Ensuring vendors adhere to requirements of a global bank
  • Shared model for vendor testing

Fabio Torrisi, Global Head of Vendor Management, UBS
Tom Garrubba, Senior Director, The Santa Fe Group/Shared Assessments

15:40 Afternoon Refreshment Break & Networking

16:10 The move to cloud: Managing vendors effectively to ensure cloud security and protection of sensitive data

  • Internal control and management of vendors using the cloud
  • Information security on cloud computing services
  • Setting up a global system with country limitations
  • Audit rights
  • IT infrastructure: Moving back to in-house
  • Provision for sensitive data or one model fits all

Dan Chalmers, Head of Technology, Change & 3rd Party Risk, Standard Life

16:50 Building a full end-to-end risk assessment framework from procurement to termination for on-going monitoring

  • Unified assessment for service rather than individual vendors
  • Incorporating risk appetite
  • Level of audit for supply chain
    • Level of assessment
    • Tracking each level employed: Access to data and information
    • Tracking linkage: How far to go
    • End to end management tools in the market

James Cay, Global Chief Procurement officer, BNY Mellon

17:30 Chairs Closing Remarks

17:40 End of Day One & Evening Cocktail Drinks Reception

Vendor-brochure-e1488456646484Download the brochure

Download a print-friendly PDF copy of the full program that includes the full two-day agenda, registration form, and more.

Download the PDF agenda

Register today

Don’t miss out on the opportunity to join the conference and hear from the senior presenters listed on the agenda. Remember to invite your colleagues as a third person can attend at half price or a fifth person for free.

Register here

Day Two | 7th June | London

08:00 Morning Registration & Coffee

08:50 Chair’s Opening Remarks

09:00 Effective internal organisation to ensure local regulatory demands are efficiently incorporated into policy for day to day oversight

  • Operational aspects: Operationalising and integrating other regulatory regimes
  • Managing costs with regulatory pressures
  • Hitting the right due diligence points pre-contract
  • Timing and resource constraints
  • Risk identification and mitigation

Gary Carter, Head of BDC EMEA and Switzerland Planning and Execution, Credit Suisse

09:40 How financial services firms are managing 3rd parties today…and how they will manage them in the future

  • The dominanet operating model that has emerged
  • Programme attributes common to the best performers
  • How leading firms achieved success, what they did differently
  • How organisations manage their “brand” internally
  • The future operating state of 3rd Party Management: Where the next jump in productivity will come from

Ben Gould, Managing Director, EMEA & APAC, Opus

10:20 Morning Refreshment Break & Networking

10:50 Case study: To hub or not to hub? 3rd party management tooling considerations

  • Pros and cons of a hub approach
  • What does 3rd party management best in class currently look like
  • What are the key challenges you are likely facing
  • A brief overview of the marketplace
  • Key considerations for tool selection

Amanda Earnshaw, Head of Procurement, Royal Sun Alliance

11:30 Building a collaborative community to reduce risk and cost in the supply chain

  • How to bring a community together to advantage of buyers and suppliers
  • Deciding whether your community should be buyer or supplier led and who pays
  • What are the key areas to agree jointly – and what to do about the other issues
  • Competition law and compliance
  • Making effective governance work
  • Experience of what went well and what could have been better

Colin Maund, CEO, Hellios Information Limited
Joe Bakowski, Head of Procurement and Supplier Management, Metro Bank PLC

12:10 Lunch Break & Networking 

13:10 Assessing the advantages and disadvantages of building industry wide utilities for a collaborative, cost and time efficient approach

  • Sharing assessments with other financial institutions
  • Asking questions upfront before taking vendors on: Agreeing on questions across banks
  • Levels of testing dependent on classification
  • Oversight of critical vendors and on-site reviews
  • Contract utility for due diligence
  • Cyber information security testing collaboration
  • Data protection barriers

Joe Bakowski, Head of Procurement and Supplier Management, Metro Bank PLC
Ann Stokes, Head of Procurement, Bank of Tokyo-Mitsubishi
Emma Mansfield, Head of Outsourced Services Assurance, Bank of Ireland
Anna Mazzone, Managing Director, International. Global Head of Financial Services, Aravo Solutions

14:00 Knowing your third party – why standardization is a win-win

  • Due diligence fatigue – How did we get here?
  • What practices can you put in place to lighten the burden, increase vendor responses, and shorten the review process?
  • Why is a utility model a win – win?
  • Why standardizing makes sense for you and your vendors

Ellen Schubert, Managing Director, IHS Markit

14:40 Maintaining level of quality and service delivery across the life of contract to ensure maximum cost efficiency and understanding supplier spend

  • Balancing increase in concentration and maintaining quality
  • Maintaining quality throughout contract
  • Keeping responsibility and accountability
  • Governance level needed
  • Understanding spend according to contract
  • Comparing contracts to invoices

Fabio Torrisi, Global Head of Vendor Management, UBS

15:20 Afternoon Refreshment Break & Networking

15:50 Reviewing financial viability and sustainability of vendors and third parties to mitigate the risks of service failure

  • Monitoring financial performance
  • Backup plan for vendor bankruptcy
  • Cost of reviews before signing contract
  • Cost and service limitations
  • Material activity outsourcing
  • Reputational risk of customer facing service failure

Margaret Gibson, Head of Procurement and Supply Chain Management, CYBG

16:30 The future of outsourcing: Reviewing industry progression and the impact of technological advances and macroeconomic trends on future practices

  • Location strategy and transitions
  • Trump outsourcing tax and impact of Brexit
  • Trigger points and operating models
  • Digital agility: E-tools available
  • Expediting human manual work
  • Electronic and automated templates
  • Driving data out of templates
  • Moving towards automation

David Maplesden, Executive Director, Workforce Strategy and Sourcing Framework, UBS
Kurt Neilson, Head of Supplier Management, Aegon

17:20 Chair’s Closing Remarks & End of Summit

3rd Colleague Half Price
Joe Bakowski Headshot

Joe Bąkowski, Head of Procurement and Supplier Management, Metro Bank PLC

Joe set up Metro Bank’s Procurement & Supplier Management function in 2014, following a spell running Banking Operations. He is currently leading a major change initiative to revolutionise Metro Bank’s supplier assurance capability.

Gary Carter Headshot

Gary Carter, Head of BDC EMEA and Switzerland Planning & Execution, Credit Suisse

Gary is Head of Deployment Planning & Execution (EMEA & CH) responsible for the project management team tasked with execution of business migrations to Credit Suisse’s offshore Business Delivery Centres, as well as the global risk and control framework for internal migrations.
In this role he is responsible for the incorporation of regulatory requirements across multiple jurisdictions into the banks deployment control process and has presented to regulators including the PRA and the Federal Reserve Bank of New York.

James Cay Headshot

James Cay, Global Chief Procurement Officer, BNY Mellon

James joined the London office of BNY Mellon in February 2013 with Global responsibility for vendor management. In 2016, James was promoted to the position of Chief Procurement Officer with responsibility for Strategic Sourcing, Accounts Payable, Procurement Technology and Operations, and Third Party Governance (which is a program designed to meet regulatory requirements for management of outsourcing

Prior to joining BNY Mellon, James spent seven years at Barclays Capital where he worked in a number of senior procurement roles including running Technology Sourcing group-wide, all procurement for the Investment Bank. In his earlier career, James was a British Army officer and has experience of management consulting and retail banking.

James has a BA (Hons) in English and American Literature from Warwick University and a Masters in Business Administration (MBA) from Warwick Business School.

In addition, since January 2015, James has been an active member of BNY Mellon’s Veterans Network (VetNet) management committee and also the Chairman of the London Employee Engagement Committee.

Dan Chalmers

Dan Chalmers, Head of Technology, Change & 3rd Party Risk, Standard Life

Dan has over 15 years’ experience, predominantly focussed in technology audit across Financial Services, including senior roles at EY, Lloyds Banking Group and the Royal Bank of Scotland. Dan’s current role is leading the Technology, Change and 3rd Party risk team within Operational Risk in Standard Life. These roles have led to hands on experience of on site 3rd party reviews through to developing oversight frameworks and understanding the risk profile associated with the emergence of new technologies and regulations in areas such as cloud technologies and data privacy regulation.

Yasmin Duranni Head Shot

Yasmin Durrani, Data Protection Officer , Zurich Insurance plc

At present Data Protection Officer for Zurich Insurance plc. A member of the Data Protection Forum, IAPP, Data Protection and Finance Group, Member Data Protection Working Party Association of British Insurers and Data Protection Committee Member of British Standards Institute.

Other expertise includes Financial Crime, Cross Border business and responding to Regulator consultation papers.

Amanda Earnshaw headshot

Amanda Earnshaw, Head of Procurement, Royal Sun Alliance

Amanda Earnshaw’s career as a Procurement leader spans over 10 years in Financial Services across RSA, RBS and JPMorgan. A keen advocate of Procurement, Amanda was a founding member of the CIPS Fellowship network and has more recently instigated Fellows of the Future, which looks to champion rising stars within the profession.
As Head of Procurement at RSA UK & International, Amanda has oversight for £300m of 3rd party operational expenses for household, pet and motor insurance. Her current challenge is to make the procurement of indirect goods and services there best in class.
Over the years, there has been a shift from Contract Management to holistic 3rd Party Management, as it encompasses an ever wider range of risks, data and 3rd parties. With the potential fines that non-compliance to GDPR will bring, Procurement have a considerable challenge ahead to bring 3rd party oversight in line. However, whilst this bears heavily on us, it takes even more of a toll on our FS supply base, especially as so many of our suppliers overlap. A hub approach could avoid duplication and increasing costs but is the industry ready for that?

Tom Garrubba Headshot

Tom Garrubba, Senior Director, The Santa Fe Group/Shared Assessments

Tom Garrubba, Senior Director at Shared Assessments, is an internationally recognized subject matter expert, lecturer, author, and blogger on third party risk, and head instructor for their Certified Third Party Risk Professional (CTPRP) program. An active blogger for the Huffington Post on business risk, he has blogged on various industry websites including Government Health IT and ISACA. Previously, Tom was Senior Privacy Manager at CVS Health where he instituted and managed their third party assessments program for all proprietary data. He has over 15 years of experience in IT security, privacy, audit, and compliance in both industry and public consulting.

Margaret Gibson Headshot

Margaret Gibson, Head of Procurement and Supply Chain Management, CYBG

Margaret will be presenting at the 2nd Annual Vendor and Third Party Risk EMEA Summit.

Ben Gould Headshot

Ben Gould, Managing Director, EMEA & APAC, Opus

Ben leads all commercial and strategic activity for Opus across EMEA and APAC from their European headquarters in London.

Having started his career in business development, Ben has spoken extensively to senior compliance, data and technology executives across a wide-range of organisations and industries. This deep understanding of the challenges they face in effectively addressing their regulatory obligations, allows Ben to support Opus clients in achieving their aspirations, specifically related to Compliance, Reference Data and Third Party Management.

Ben is a veteran of the data and technology business, and has held prior positions with Datamonitor, ICC and Equifax.

Julie Hubbard Headshot copy

Julie Hubbard, Director Strategic Operations, One Savings Bank

Julie Hubbard Operations Strategic Director for One Savings Bank responsible for core functions across Operations including the Vendor Management function within the organisation. Julie has worked within the Financial Services sector for over 25 years with involvement with Vendor Management for over 19 years in various positions such as a Relationship Manager (Global and Local) for various material outsourced service providers, Vendor Compliance and overall responsibility to develop and ensure compliance across all functions within an organisation ensuring robust policies are in place and being followed to comply to key Vendor Management requirements and regulations.

Nitin Joshi Headshot copy

Nitin Joshi, Senior Manager Quality & Vendor Control, One Savings Bank

Nitin Joshi, Senior Manager Quality & Vendor Control for OSBIndia Private Limited (a wholly owned subsidiary of OneSavings Bank Plc) is responsible for transactional Quality across the Bank and is also responsible for the Vendor Management & Control function. Nitin has been associated with the Customer and Financial Services for the last 15 years in different capacities across core operations, quality & audit functions to help enable robust processes to ensure adherence to policies and procedures. For almost 7 years he had been representing an offshore material service provider in execution of the vendor management program of a UK based financial organisation.

Michael Lucas Headshot

Michael Lucas, Senior Manager, Crowe Horwath

Michael Lucas is an industry thought leader in Third-Party Risk Management and Information Security with Crowe Horwath. Michael manages Crowe’s Third Party Assessment Team, coordinating a dedicated network of assessors around the globe. He specializes in using innovation and automation to tackle third party risk management challenges like the overwhelming numbers of third party relationships. Many of Michael’s clients initiated projects due to data breaches, and, with Crowe’s help, have revamped their programs to prevent recurrence. Michael is currently on secondment and resides in London with his family.

Emma Mansfield

Emma Mansfield, Head of Outsourced Services Assurance, Bank of Ireland

I have nineteen years’ experience in the Financial Services industry, working on both sides of the sourcing partnership.  I have demonstrable experience across the three lines of defence, from sales to oversight, strategy to change, for both direct and indirect outsourced arrangements.  I am customer centric in my approach, but remain focused on the needs of the business, demands of the regulators and desires of the individuals.

In my current role as Head of Outsourced Services Assurance, I am accountable for the development of Outsourced Risk Management Strategies, Policies & Frameworks.  I am also responsible for providing support, and guidance, on all aspects of operational risk management for outsourced services, including promoting and developing a strong risk management culture across the end to end value chain.

I am passionate about identifying and harnessing talent and act as a mentor, both internally and externally. Additionally, I believe good corporate citizenship is the responsibility of all and as such, I am heavily engaged in the Banks Responsible Business programme.

David Maplesden Headshot

David Maplesden, Executive Director, Workforce Strategy and Sourcing Framework , UBS

David Maplesden has been with UBS for 12 years. He is currently the manager responsible for the UBS Workforce Strategy and controlling the Sourcing Framework. He has experience in Sourcing stretching back over nearly 20 years working with retail and manufacturing partners as a consultant prior to joining UBS. His specialist knowledge is in Outsourcing and associated regulations. Prior to his current role managed the Group Sourcing risk remediation program to bring all Sourcing activities within the UBS/Regulatory risk thresholds.


Colin Maund, CEO , Hellios Information Limited

Colin is currently CEO of Hellios Information, a company specialising in supplier information management. Previously Colin co-founded Achilles Group that grew to employ more than 800 people in 26 countries.  Colin has worked in procurement for a wide variety of industries for over 30 years including working for HM Treasury on the introduction of Public Procurement rules into the UK. He has worked on collaborative procurement solutions since the early 1990s. In 2009 he was awarded UK Ernst & Young Entrepreneur of the Year for IT Services. Colin has supported The Outward Bound Trust for many years and is now a Trustee.

Anna Mazzone Headshot

Anna Mazzone, Managing Director, International. Global Head of Financial Services, Aravo Solutions

Anna Mazzone leads and drives Aravo’s global expansion and is responsible for building operations and direct and partner channels internationally. She also leads growth initiatives and client engagement across financial services, bringing with her over 20 years’ financial services industry experience in the international markets.

The former Global Head of KYC Managed Services at Thomson Reuters, Anna founded and grew Thomson Reuters’ Org ID KYC Managed Service, leading a team of more than 150 staff and managing clients in more than 80 countries.

Ms. Mazzone’s deep domain expertise in Technology for Financial markets (FinTech), GRC (Governance Risk & Compliance technologies), and Know Your Customer (KYC) as well as Know Your Supplier/Vendor (KYS/KYV) has contributed to significant growth at companies including BAML, Thomson Reuters, CME Group, Markit and Trunomi.

Anna is on the Board of the Non-profit, Junior League of London, having supported the organization for over 14 years, on the Advisory Board for Trunomi, and is a business mentor for Level39 London Accelerator. In 2016 Anna was named in Innovate Finance’s “Women in Fintech Powerlist” which recognizes women who are playing a vital role in the development of the global Fintech sector. She holds a Bachelor of Science, Finance and Insurance from the University of South Carolina – Darla Moore School of Business.

Victoria Munoz-Titos Headshot

Victoria Munoz-Titos, EMEA Head of Risk and Control Services, AIG

Victoria Muñoz-Titos is the EMEA Head of Risk and Control Services at AIG Limited. She has more than 20 years experience working within large financial services organisations. Her career in AIG has focused on the holistic lifecycle management and risk mitigation of third parties initially in the UK and subsequently across the EMEA regional context. Victoria has been the thought leader behind the development and implementation of a risk management methodology that has become paramount in the management of third parties in the UK and now used across the other AIG global regions.

Kurt Neilson Headshot

Kurt Neilson, Head of Supplier Management, Aegon 

Kurt Neilson is Head of Supplier Management at Aegon UK, a leading provider of Life and Pensions Products. Kurt’s respon6sibilities include the management of the full lifecycle of contracts from procurement through to exit and he oversees the governance of all of Aegon’s strategic contracts with annual spend in the region of £100m.

Kurt has over 25 years’ experience in UK Financial Services gained at Royal Life, Swiss Life, Resolution, Phoenix Group and since 2013, Aegon UK.

Kurt was a member of a BSI UK working party which formed part of a broader global group which introduced a Global ISO standard in Outsourcing in Q4 2014.

Kurt holds the Chartered Insurance Institute’s Advanced Financial Planning Certificate, an MSc in Management, the National Outsourcing Association’s Professional Certificate in Outsourcing, and more recently the IACCM Supplier Relationship Management – Expert level.

Kurt is married with two young children and is a keen golfer and member of Formby Golf Club in the North West of England.


Ellen Schubert, Managing Director, IHS Markit

Ellen will be presenting at the 2nd Annual Vendor & Third Party Risk EMEA Summit.

Sue Scott-Douglas Headshot. png

Sue Scott-Douglas, Head of Technology Supplier Management, Barclays

Sue Scott-Douglas is the Head of Technology Supplier Management at Barclays, responsible for the oversight and delivery of effective risk, performance and commercial management of the banks key Technology suppliers. In addition Sue is a member of the MSDUK (Minority Supplier Development UK) Board of Directors, a not-for-profit organisation that seeks to promote inclusive procurement for ethnic minority owned businesses.
Sue has over 10 years’ experience in sourcing and supplier management, both in operational and consultancy roles, before moving into her current position.
Prior to joining the Sourcing and Supplier Management, Sue held various technical and managerial positions within Barclays Technology function.

Ann.Stokes Headshot

Ann Stokes, Head of Procurement, Bank of Tokyo Mitsubishi

Ann Stokes is head of the Procurement function for MUFG in the UK, she has 15 years’ experience in sourcing and supply chain management. Ann is responsible for circa £100million of category spend across various commodities. She is also responsible for providing guidance on best practice procurement for the MUFG EMEA regions.

Ann was involved in creating and implementing a vendor risk programme two years ago. The programme is evolving and enhancements are to be made, once finalised the framework for Vendor Risk will be extended to EMEA locations.

Michele Sullivan

Michele Sullivan, Partner, Crowe Horwath

Michele Sullivan is a Partner in Crowe’s Horwath’s Risk Consulting Practice and serves as the global leader of our Third-Party Risk Management solutions. Michele has over 25 years of experience and focuses on leading large, complex projects and has focused primarily on the financial services industry. She regularly advises clients on building, improving, and remediating risk management programs, as well as designing solutions to improve related practices and strategies. Michele has been responsible for strategic direction, tactical execution, change management, and client satisfaction for many of the Firm’s largest financial services clients. In addition, Michele services on Crowe Horwath’s Board of Directors; the seven person governing body elected by the firm’s partners.

Fabio Torrisi Headshot

Fabio Torrisi, Global Head of Vendor Management, UBS

Fabio joined UBS in Zurich in 2015 as Head of Global Vendor Management, with global responsibility on all categories. Prior to joining UBS, Fabio was with McKinsey and Company where he focused on operations and technology topics and part of the outsourcing and offshoring practice leadership. Earlier in his career, Fabio was delivering outsourced IT services.

Fabio holds a PhD from the Swiss Federal Institute of Technology and a MS in Computer Engineering from the University of Florence.

Find our Vendor Risk thought-leadership articles here. These articles feed from our much larger Risk Insights section of our website which provides you with thought-leadership, white papers, articles and more across risk and regulation.

16th May 2017

Keeping third party risk first on the cyber risk list

11th May 2017

Effectively monitoring the supply chain for better understanding of risks and oversight

10th May 2017

Maintaining effective oversight and control of the entire supply chain to ensure standards and policies are met

5th May 2017

The advantages and disadvantages of building industry wide utilities for a collaborative, cost and time efficient approach

3rd May 2017

The EU GDPR & Third Party Risk

23rd March 2017

Maintaining level of quality and service delivery across the life of contract

23rd March 2017

The Future of vendor and third party outsourcing

13th March 2017

Third Party Risk Management of Affiliates

1st March 2017
vendor risk management 2

Preparation for the GDPR and effective management of third parties beyond vendors

5th January 2017
MCO BANNER girl[1]

The development of third party risk management practices

9th May 2016
Tom Garrubba Vendor Risk Insights

TPRM landscape is poised for coordinated standardisation of assessment processes

5th May 2016

Third party risk management towards a pragmatic approach

11th April 2016

Cyber Culture: Key challenges for banks

7th April 2016

Building models for different classes of vendor

6th April 2016

Reviewing Europe’s Vendor and Third Party Risk Landscape

4th April 2016

Vendor & Third Party Risk: 2016 Focus

The Center For Financial Professionals recently collaborated with MyComplianceOffice to conduct research with close to 250 relevant professionals to identify the development of third party risk management practices to provide the industry with a better view of the current issues and an understanding of how our peers are overcoming the challenges in the sector.

Want to work with the Center for Financial Professionals on the next research report? Contact today to discuss how we research over 450,000 risk professionals.

MCO report



Aravo was founded in 2000 to bring order to the complex and dynamic world of enterprise Third Party Management. We deliver market-leading SaaS solutions for managing third party compliance and risk that help Global 2000 companies protect their brand, build customer trust and elevate business performance.

As a market pioneer, Aravo has defined best practices for Third Party Management for over fifteen years. Working with companies with the most complex and globally dispersed third party networks in the world, we have assembled impressive domain expertise on best practice processes and implementations, and are proven to scale. Accenture, BHP, Cisco, GE, Johnson & Johnson, Unilever and Visa, among others, all count on Aravo’s Enterprise Platform to achieve global continuous insight into third party risk and compliance. With our combination of technical innovation and deep domain expertise, Aravo delivers unrivaled configurability, regulatory agility, ease-of-use, high performance, and scalability.

As a company, we are passionate about helping companies eliminate corruption and social injustice from their extended enterprise.

BitSight Technologies

BitSight Technologies is transforming how companies manage information security risk with objective, evidence-based security ratings. The company’s Security Rating Platform continuously analyzes vast amounts of external data on security behaviors in order to help organizations manage third party risk, benchmark performance, and assess and negotiate cyber insurance premiums. For more information, please visit or follow us on Twitter (@BitSight).

Crowe Horwath

Crowe Horwath is a public accounting, consulting, and technology firm with offices across the globe. Connecting deep industry and specialized knowledge with innovative technology, our dedicated professionals create value for our clients with integrity and objectivity. We accomplish this by listening to our clients – about their businesses, trends in their industries, and the challenges they face. We forge each relationship with the intention of delivering exceptional client service while upholding our core values and our industry’s strong professional standards. Crowe invests in tomorrow because we know smart decisions build lasting value for our clients, people, and profession.


Accurate and up-to-date information on suppliers and supply chains has become a fundamental requirement to meet the rising challenges of managing supplier risk, compliance, performance and development.

Hellios has unique expertise in providing total supplier information management solutions that provide the highest degree of quality in the most cost effective manner for buyers and suppliers including SMEs.

Combined with world-class cloud-based technology and assessment resources means that Hellios is committed to providing sustainable solutions for industry communities, multinationals, governments and supply chains.

Hellios – providing the next generation of Supplier Information & Risk Management services.

IHS Markit

IHS Markit (Nasdaq: INFO) is a world leader in critical information, analytics and solutions for the major industries and markets that drive economies worldwide. The company delivers next-generation information, analytics and solutions to customers in business, finance and government, improving their operational efficiency and providing deep insights that lead to well-informed, confident decisions. IHS Markit has more than 50,000 key business and government customers, including 85 percent of the Fortune Global 500 and the world’s leading financial institutions. Headquartered in London, IHS Markit is committed to sustainable, profitable growth.


Opus was founded on a simple premise: that faster, better decisions in compliance and risk management could give businesses an extraordinary advantage in the marketplace.

Today, the world’s most respected, global corporations rely on Opus to free their business from the complexity and uncertainty of managing customer, vendor, and third-party risks.

By combining the most innovative SaaS platforms with unparalleled data solutions, Opus turns information into action so your business thrives.

Formed through the $500M partnership of Doug Bergeron, Chairman of Opus, and leading Private Equity Firm GTCR, Opus is changing the landscape of risk management.


Prevalent is the leader in third-party risk management and cyber threat intelligence, helping global organizations manage and monitor the security threats and risks associated with third and fourth-party vendors. With the release of Prevalent Synapse™, organizations now have a purpose-built, unified platform that reduces both risk and cost in a shared assessment model, leveraging standardized content, automation, and threat intelligence.


Can your organisation contribute at our 2nd Annual Vendor & Third Party Risk Summit?

Please contact the Center for Financial Professionals today to discuss how we can deliver your thought-leadership at the event, help you generate leads, and provide you with unique networking and branding opportunities. Below is an outline of what we can offer, but please contact or call us on +44 (0)20 7164 6582 where a member of the team will be happy to tailor the right package for you.

Media Publications

We are happy to support publications, associations and organisations at this event. From a simple company listing with your logo to taking advantage of some of our sponsor benefits listed above. To discuss a media partnership further please email or call +44 (0)20 7164 6582.

all about risk 245x150
FocusEconomics_HR_Tagline copy
Global Risk Community 245x150
IT-GRC-Forum 180x110
ORIC 180x100


Amba Hotel
Bryanston Street

Reserve a room at the Amba Hotel at a discounted rate

We have reserved a limited number of rooms with the Amba Hotel for attendees of Vendor & Third Party Risk EMEA at a preferential rate of £205 and will be issued on a first come, first served basis.

To reserve accommodation, please quote CENT060617. You can register via email or by telephone 0800 330 8523.



Download the Risk Insights App

Interact with your colleagues, peers and industry thoughts leaders live at the Vendor & Third Party Risk EMEA Summit. 

Our Risk Insights App provides an audience interaction participation tool at the Summit which allows you to ask speakers and panelists questions throughout the sessions and engage in industry polls with other senior risk professionals.

All Summit information is available at a click of a button such as the two day agenda, biographies of all presenters map location and surveys


Sponsor the App. For more information, email us.


1. Search for “Risk Insights” on your relevant app store.


2. Once the App is downloaded and opened, Vendor & Third Party Risk EMEA will appear on your dashboard. Select “Access Now”

3. You will be asked to provide the event access code, an email with this code has been sent to you by email after registering for the event.

4. Here you will be able to access all details you need prior and during the event, i.e presentations, agenda and map. The polls and ask a question features will be used during the course of the two days so make sure to keep your phones handy during the event.


We have a web App available to use through your phone internet browser. At the event visit and simply select Vendor & Third Party Risk EMEA Summit, then enter your details and the access code (refer to your emails for the code)

If you are having any issues please feel free to drop us a call on +44 (0)20 7164 6582 and a member of the team will be able to help you out.

After the Event

Keep the Risk Insights App after the event to browse risk and regulation insights, share and save articles, and receive notifications on the latest challenges all within your professional interests. Our network of authors range from risk professionals within banking risk, financial regulation, market risk, credit risk, operational risk and treasury/balance sheet management.

Frequently Asked Questions

Can I present at Vendor & Third Party Risk EMEA Summit?

Yes, the Center for Financial Professionals are happy to discuss speaking opportunities at Vendor & Third Party Risk EMEA Summit 2017. For further information on this please contact or call us on +44 (0) 20 7164 6582.

Are there any rules on the dress code?

Business attire is requested. The Summit is a formal opportunity to network with like-minded professionals and to gain knowledge from the industry’s finest risk management experts.

What is the cost and what is included in the registration fee?

We offer incentives for ‘early bird’ registrants of the Summit, as outlined on our pricing structure.

Registration includes breakfast, refreshment breaks, lunches, the cocktail reception at the end of the day, full access to the Summit sessions and exhibition area. Presentations from sessions are also available, subject to speaker approval.

Where can I find the Summit documentation and speaker presentations?

All registered attendees will receive an email with access to documentation and speaker presentations after the Summit*

We will work with our presenters to include as many presentations as possible on our Risk Insights App during the Summit.

*Please note that our speakers often have to gain permission from their relevant compliance departments to release their presentations. On rare occasions compliance may not allow presentations to be distributed.

Will breakfast, lunch and refreshment be provided?

Yes. As with all of our events the Center for Financial Professionals will be providing brilliant coffee, breakfast, lunch, refreshments, and smaller bites during the networking breaks.

This will be provided on both days of the Summit.

Will there be opportunities to network with other attendees?

There are ample opportunities for networking and interaction throughout the Summit, such as

  • Breakfast, lunch and refreshment breaks
  • Cocktail reception at the end of the day (Subject to confirmation)
  • Q&A, panel discussions and audience participation technology available through the Risk Insights App
I have several colleagues that would like to attend, is there a group discount?

Certainly! We are pleased to offer you a 50% discount on the third registration or provide a fifth registration for free.

If you would like to register more than five colleagues please contact us on +44 (0) 20 7164 6582

Please note:

  • Registrations must be made at the same time
  • Registrations must come from the organisation
  • The lowest registration will be discounted
Are there opportunities to share my thought-leadership at Vendor & Third Party Risk EMEA?

Yes there are plenty of opportunities for the Center for Financial Professionals to share thought-leadership to the attendees of Vendor & Third Party Risk EMEA and our wider risk professionals community.

At the event
We can distribute your material to the attendees, offer you an exhibition booth, and provide speaking opportunities so that you may enjoy a more prominent presence at the Summit. Visit the Sponsor tab for further information or contact / +44 (0) 207 164 6582.

Risk Insights
Feature your content on our Risk Insights website and supporting Risk Insights monthly newsletter. For further information please download our media pack here.

Are media partnerships available for Vendor & Third Party Risk EMEA?

Yes. As part of a media partnership we can offer a variety of options to increase the branding and awareness of your association, company, certificate, publication or media. We are flexible with what we can offer however we usually:

  • Provide a discounted rate to attend
  • Place your logo and profile on the Summit website
  • Place your logo on the Summit brochure
  • Place your logo on promotional content where applicable
  • Distribute your media/marketing at the Summit
  • Promote through social media channels

To discuss this further please contact or call +44 (0) 20 7164 6582.

After the conference, all attendees are asked to fill out an evaluation form. See what they had to say about the Vendor & Third Party Risk EMEA in 2016:

“Good interaction with the attendees.”

Investel Wealth & Investment

“I was delighted that the emerging concept of Conduct Risk was discussed in great depth and detail.”

Aberdeen Asset Management

“Well run event and CFP staff were extremely helpful. Also, speakers were of high calibre.”

Berwin Leighton Paisner

“Great quality content and challenging debate.”


“High level and relevant topics.”

Investic Wealth and Investement

“It brings a good mix of people together to network and knowledge is shared.”


“Topics were very interesting and speakers were knowledgable.”

Commercial International Bank, Egypt

Earn CPD Points

To claim your CPD points please contact or call (0)20 7164 6582

CPD Certified Logo

See Us In Action

Early Bird
Registration Before 19 May
Standard Rate
Registrations After 19 May
Register Now
(SAVE £500)
£1,799 Register

Should you have any questions regarding registering, please contact the Center for Financial Professionals, please contact us on +44 (0)20 7164 6582 / +1 888 677 7007 (US)  or email

*All rates are subject to UK VAT

Group Bookings:

Group rates are available for 2 or more attendees from the same organisation, when registering at the same time. The current rate allows every third colleague to come along for half price! or a fifth colleague to attend for free

Other ways to register

Save time – Register by email

Simply email us your e-signature – and we will do the rest for you!

2. Contact Us Directly

3. Download the PDF Registration Form

Keep Updated


Interested in Vendor Risk Management but not ready to register? Click here to keep updated.

Download the Risk Insights App


Bitsight Logo 245
ch-logo 245 150
Screen Shot 2017-04-13 at 14.11.47
IHS logo 245x150
opus-logo copy

Connect With Us | #VRMEMEA

TwitterLinkedInFacebookYouTubephone icon 50px