• The Cybersecurity Imperative: Whitepaper from WSJ.com

    From the editors of WSJ Pro Cybersecurity, this research paper based on the Cybersecurity Imperative study provides a deep dive into findings from the global, landmark cyber-risk study of 1,300 enterprises. From best practices to risk management strategies to investing for cyber-risk, benefit from benchmarks and insight on information security, third party risk and beyond from global enterprises.

    • October 16, 2018
    • Whitepaper
  • The Cybersecurity Imperative: Executive Summary from WSJ.com

    From the editors of WSJ Pro Cybersecurity, this executive summary of the Cybersecurity Imperative study spotlights key findings and best practices from this global, landmark cyber-risk study of 1,300 enterprises. As cyber threats continue to grow and challenge, learn what steps you can take to combat it, from experts around the world.

    • October 16, 2018
    • Executive Summary
  • Compliance Week logo

    Reducing fourth-party risk with eyes wide open

    Recent analyses show that many companies don’t have adequate visibility into their third parties, and even less so their third parties’ third parties and beyond (so-called Nth parties).

    • May 18, 2018
    • Article
  • Ethisphere Report - Risk as a Team Sport

    A Special Report: Risk Management as a Team Sport

    Learn from companies that are doing operational risk management well, including some recognized as Ethisphere's 2018 World’s Most Ethical Companies

    • March 14, 2018
    • Whitepaper
  • lobby in the rush hour is made in the manner of blur and a blue

    GDPR: A little acronym with big meaning for businesses across Europe and beyond

    EU's General Data Protection Regulation (GDPR) is a drastic overhaul to data protection and privacy laws. This GDPR overview describes why it is so urgently needed and, if you're responsible for ensuring compliance, what you should do about it.

    • March 7, 2018
    • Whitepaper
  • Server Farm

    Top InfoSec Risk Advice from NYU DFS Cybersecurity Experts and More…

    On June 29, 2017, the Risk Assistance Network + Exchange (RANE) and Opus assembled a panel of experts to discuss best practices for managing third-party cybersecurity risk. This whitepaper summarizes their discussion.

    • June 29, 2017
    • Whitepaper
  • Man holding sheet of paper with ominous background and letters swirling around him

    Third Party Risk Management for Banks

    While leveraging third parties provides resources and cost savings, it also introduces risks that a bank must manage. This white paper provides an overview of how the Banking Accelerator can effectively manage third party risk and compliance.

    • March 31, 2017
    • Whitepaper
  • Looking up at sky framed by buildings

    The Business Case for Third Party Management

    The risk and costs of managing third parties are escalating dramatically. As this study shows, there are now highly effective ways to reduce third-party risk while controlling the cost of operating a global best-in-class third-party management program...

    • March 31, 2017
    • Whitepaper
  • Woman writes in a notebook while looking at a cell phone

    Third Party InfoSec Risk Assessment and Controls

    Effectively managing information security risk arising from third party relationships is an essential aspect of GRC capability This playbook outlines the steps to take – or plays – and sets up the structure for assignment of the various tasks to those in your organization.

    • March 21, 2017
    • White Paper
  • OCC Logo with men shaking hands

    Managing Third Party Risk for OCC Compliance

    On January 24, 2017, the Office of the Comptroller of the Currency (OCC) issued Bulletin 2017-7 Supplemental Examination Procedures an update to Bulletin 2013-29 on Third Party Relationships. This white paper summarizes the OCC guidance and addresses the implications of new and expanded requirements for vendor management teams, banking executives and board members.

    • March 1, 2017
    • White Paper
  • Hands stopping cash payment

    Quickly Assess and Control Third Party Bribery and Corruption Risks

    Companies use third parties to help them vie for market share, strive to remain competitive and seek opportunities in new and challenging geographies. However, cultural norms vary greatly and while bribes and other means of influencing judgement or conduct may be acceptable in some markets, the extraterritorial reach of anti-corruption laws like the U.S. Foreign Corrupt Practices Act (FCPA) means companies can be prosecuted for corrupt practices anywhere in the world.

    • March 1, 2017
    • White Paper
  • Business shaking hand with a client

    Reducing Contract Risk Today Reduces Corporate Risk Tomorrow

    Organizations increasingly work with third parties worldwide. Unfortunately, resource constraints can often result in a "one size fits all" approach to contracts that may or may not address the specific risks of the relationship. This document offers a new approach to contract risk management that provides a consistent, systematic method of engaging and informing the legal team of risks posed by the third party relationship.

    • June 1, 2016
    • White Paper

View More +