{"id":24627,"date":"2019-03-02T06:53:06","date_gmt":"2019-03-02T06:53:06","guid":{"rendered":"https:\/\/www.eccu.edu\/?p=24627"},"modified":"2023-06-05T07:28:25","modified_gmt":"2023-06-05T07:28:25","slug":"third-party-technology-risk-management","status":"publish","type":"post","link":"https:\/\/www.eccouncil.org\/cybersecurity-exchange\/cyber-talks\/third-party-technology-risk-management\/","title":{"rendered":"Third Party Technology Risk Management"},"content":{"rendered":"\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t
\n\t\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

\"Thomas<\/p>

Name:<\/strong> Thomas Fertal
Designation:<\/strong> Technology Risk & Information Security Manager
Organization:<\/strong> Cyber Governance Consulting LLC
Topic:<\/strong> Third Party Technology Risk Management
Date of Webinar:<\/strong> 28th<\/sup> August, 2019
Time and Location:<\/strong> 12pm EST\/ 9:30pm IST\/ 5pm GMT<\/p>

Watch Now<\/a><\/p>

\u00a0<\/span><\/p>

Speaker Bio: <\/strong>Thomas Fertal has more than 17 years of experience working in technology, with 14+ years concentrating on governance-risk-compliance (GRC) and information security. He has designed, implemented, and operated enterprise-wide programs covering regulatory compliance as well as management of technology risks for applications, infrastructure, processes, and third-parties. These efforts helped earn him formal recognition awards at Morgan Stanley (Technology Leadership & Excellence for Risk Control Category) and more recently at AIG (CIO 100 for Cloud Transformation Journey). Thomas has strived to be regarded as trusted advisor by his business stakeholders and partners via coverage of the \u201cFirst Line of Defense\u201d at three systemically important financial institutions.<\/p>

Topic Abstract:<\/strong> Effectively managing technology risk becomes ever more challenging with increases in vulnerabilities, threats, and exploit likelihoods. A subset of technology risk associated with third parties is particularly difficult to manage due to the inability to apply standardized risk assessment and control processes. The complexity becomes compounded when vendors leverage their own third-party relationships (i.e., \u201cFourth\u201d or N-Party Risk). Finally, the regulatory environment is now explicitly calling for the management of third-party technology risk, pointing out that \u201ctransferred\u201d risks still require the same degree of mitigation as in-house technology. This webcast aims to simplify the problem and layout the basic governance and procedures to achieve the desired mitigation.<\/p>

*Examples, analysis, views and opinion shared by the speakers are personal and not endorsed by EC-Council or their respective employer(s)<\/p>

<\/a>