Search Results

< Back Panel TPRM Program Maturity Thursday, September 10, 2020 Date Thursday, September 10, 2020 Time 10:00 - 11:30 AM CT Intended Audience TPRA Practitioner & Vendor Members Duration 90 minutes CPE Credits Fee Free Register Event Description Winter Virtual Conference Show More SPEAKER(S) INFORMATION CPE CREDIT Julie Gaiaschi CEO & Co-Founder | Third Party Risk Association (TPRA) Julie Gaiaschi, CISA, CISM, is the CEO & Co-Founder of the Third Party Risk Association (TPRA). She has over 15 years of technology and information security risk experience, with the last 10 years specializing in third party risk identification and mitigation techniques. In her role as CEO, she provides strategic direction for the non-profit, whose mission it is to further the third party risk profession through knowledge sharing and networking. She also has a passion for helping others enhance their own third party risk management programs. In 2021, Julie was awarded " CEO of the Year " by Women in Governance, Risk, and Compliance. Prior to co-founding the TPRA, Julie consulted on third party risk for a large bank. She also developed and led a large health payer organization’s Third Party Security program. There, she established and executed the third party risk assessment process, which included integration into the Procurement process. Prior to her role as the leader over Third Party Security, Julie was a Senior IT Auditor. Julie resides in Iowa with her husband and two girls. She enjoys traveling and cooking. About These Meetings Monthly Member Meetings are held every second Thursday of the month. Join us for relevant and informative roundtables, panels, and/or presentations on TPRM topics and pain points our members noted within the 2023 end-of-year survey. TPRM Tool Talk Demos | 30 Minutes Certain meetings feature "TPRM Tool Talk" demos in the last 30 minutes of the call. Hear from TPRM Service Providers on new and innovative tools as your schedule allows! Who Should Attend TPRA Practitioner and Vendor Members are able to register for all of these meetings. Cancellations In the event that this session would need to be canceled, you will be contacted and invited to register for the rescheduled event. Questions & Concerns For more information regarding administrative policies such as complaints, please contact us at info@tprassociation.org . Attendees are eligible to receive 0.5 CPE credits for every 30 minutes of the LIVE meeting that they attend. (Ex. Attend for 30 minutes = 0.5 CPE credits. Attend for 1 hour = 1 CPE credits). CPE Credit will be issued upon completion of the post-event survey. Please allow at least one week following the event to receive your CPE certificate.

< Back INDUSTRY ROUNDTABLE Q4 Industry Roundtable: Higher Education Friday, November 14, 2025 Date Friday, November 14, 2025 Time 10:00 - 11:00 AM CT Intended Audience TPRA Practitioner Members in the Higher Education industry Duration 60 minutes CPE Credits 0 Fee Free Register Event Description Step into the world of higher education’s unique TPRM challenges during this engaging roundtable discussion. Designed for TPRA Practitioner Members in academia, this quarterly meeting is facilitated by Julie Gaiaschi, CEO & Co-Founder of TPRA, and revolves around participant-driven agendas. Whether it’s managing risks with technology vendors or navigating compliance requirements, this session fosters collaboration and actionable takeaways for TPRM in higher education. SPEAKER(S) INFORMATION CPE CREDIT These meetings are roundtables with topics chosen each quarter by attendees and participants, facilitated by Julie Gaiaschi, CEO & Co-Founder of TPRA. About These Meetings Industry Roundtables (previously called Special Interest Calls) are industry-specific meetings where the agendas are set each quarter by its participants and facilitated by community members. Any TPRA Practitioner Member belonging to the industry noted above may join the calls. Who Should Attend All TPRA Practitioner Members in the related industry are invited to these events. Cancellations In the event that this session would need to be canceled, you will be contacted and invited to register for the rescheduled event. Questions & Concerns For more information regarding administrative policies such as complaints, please contact us at info@tprassociation.org . No CPE credits are provided for this event type.

Join us each month for our Third Party Risk Insight Work Group (previously known as "Focus Group"), during which more mature programs assist with the build-out of TPRA's Third Party Risk Management (TPRM) 101 Guidance, templates, and tools.   < Back WORK GROUP Third Party Risk Insight Work Group Thursday, June 26, 2025 Date Thursday, June 26, 2025 Time 10:00 AM - 11:00 AM CT Intended Audience TPRA Practitioner & Vendor Members Duration 60 minutes CPE Credits 0 Fee Free Register Event Description Collaborate with seasoned TPRM professionals to shape the future of third-party risk management during our Third Party Risk Insight Work Group ! This group focuses on enhancing TPRA's TPRM guidance, templates, and tools. Designed as a collaborative effort, the group leverages the expertise of more mature programs to develop practical resources for the broader TPRM community. Show More SPEAKER(S) INFORMATION CPE CREDIT These meetings are work groups in which members work together to create materials, tools, templates, and more that can be shared with the greater TPRM community. Meetings are facilitated by Julie Gaiaschi, CEO & Co-Founder of TPRA. About These Meetings During our Third Party Risk Insight Work Group , more mature programs assist with the build-out of TPRA's Third Party Risk Management (TPRM) 101 Guidance, templates, and tools. Who Should Attend Any TPRA member (Practitioner and Vendor) may join, but it is recommended members with more mature programs participate. Cancellations In the event that this session would need to be canceled, you will be contacted and invited to register for the rescheduled event. Questions & Concerns For more information regarding administrative policies such as complaints, please contact us at info@tprassociation.org . No CPE credits are provided for this event type.

< Back PRESENTATION Integrating Your TPRM Program into the Procurement process Thursday, July 9, 2020 Date Thursday, July 9, 2020 Time 10:00 - 11:30 AM CT Intended Audience TPRA Practitioner & Vendor Members Duration 90 minutes CPE Credits Fee Free Register Event Description Fall Virtual Conference Show More SPEAKER(S) INFORMATION CPE CREDIT Julie Gaiaschi CEO & Co-Founder | Third Party Risk Association (TPRA) Julie Gaiaschi, CISA, CISM, is the CEO & Co-Founder of the Third Party Risk Association (TPRA). She has over 15 years of technology and information security risk experience, with the last 10 years specializing in third party risk identification and mitigation techniques. In her role as CEO, she provides strategic direction for the non-profit, whose mission it is to further the third party risk profession through knowledge sharing and networking. She also has a passion for helping others enhance their own third party risk management programs. In 2021, Julie was awarded " CEO of the Year " by Women in Governance, Risk, and Compliance. Prior to co-founding the TPRA, Julie consulted on third party risk for a large bank. She also developed and led a large health payer organization’s Third Party Security program. There, she established and executed the third party risk assessment process, which included integration into the Procurement process. Prior to her role as the leader over Third Party Security, Julie was a Senior IT Auditor. Julie resides in Iowa with her husband and two girls. She enjoys traveling and cooking. About These Meetings Monthly Member Meetings are held every second Thursday of the month. Join us for relevant and informative roundtables, panels, and/or presentations on TPRM topics and pain points our members noted within the 2023 end-of-year survey. TPRM Tool Talk Demos | 30 Minutes Certain meetings feature "TPRM Tool Talk" demos in the last 30 minutes of the call. Hear from TPRM Service Providers on new and innovative tools as your schedule allows! Who Should Attend TPRA Practitioner and Vendor Members are able to register for all of these meetings. Cancellations In the event that this session would need to be canceled, you will be contacted and invited to register for the rescheduled event. Questions & Concerns For more information regarding administrative policies such as complaints, please contact us at info@tprassociation.org . Attendees are eligible to receive 0.5 CPE credits for every 30 minutes of the LIVE meeting that they attend. (Ex. Attend for 30 minutes = 0.5 CPE credits. Attend for 1 hour = 1 CPE credits). CPE Credit will be issued upon completion of the post-event survey. Please allow at least one week following the event to receive your CPE certificate.

< Back Special Interest Call, Finance & Insurance How to Use Technology to Do More With Less Thursday, April 8, 2021 Date Thursday, April 8, 2021 Time 10:00 - 11:30 AM CT Intended Audience TPRA Practitioner & Vendor Members Duration 90 minutes CPE Credits Fee Free Register Event Description Presentation: "How to Use Technology to Do More With Less" by Privva's Ishan Ghirdhar, CEO & Jeremy Mento, Business Analyst SPEAKER(S) INFORMATION CPE CREDIT Julie Gaiaschi CEO & Co-Founder | Third Party Risk Association (TPRA) Julie Gaiaschi, CISA, CISM, is the CEO & Co-Founder of the Third Party Risk Association (TPRA). She has over 15 years of technology and information security risk experience, with the last 10 years specializing in third party risk identification and mitigation techniques. In her role as CEO, she provides strategic direction for the non-profit, whose mission it is to further the third party risk profession through knowledge sharing and networking. She also has a passion for helping others enhance their own third party risk management programs. In 2021, Julie was awarded " CEO of the Year " by Women in Governance, Risk, and Compliance. Prior to co-founding the TPRA, Julie consulted on third party risk for a large bank. She also developed and led a large health payer organization’s Third Party Security program. There, she established and executed the third party risk assessment process, which included integration into the Procurement process. Prior to her role as the leader over Third Party Security, Julie was a Senior IT Auditor. Julie resides in Iowa with her husband and two girls. She enjoys traveling and cooking. About These Meetings Monthly Member Meetings are held every second Thursday of the month. Join us for relevant and informative roundtables, panels, and/or presentations on TPRM topics and pain points our members noted within the 2023 end-of-year survey. TPRM Tool Talk Demos | 30 Minutes Certain meetings feature "TPRM Tool Talk" demos in the last 30 minutes of the call. Hear from TPRM Service Providers on new and innovative tools as your schedule allows! Who Should Attend TPRA Practitioner and Vendor Members are able to register for all of these meetings. Cancellations In the event that this session would need to be canceled, you will be contacted and invited to register for the rescheduled event. Questions & Concerns For more information regarding administrative policies such as complaints, please contact us at info@tprassociation.org . Attendees are eligible to receive 0.5 CPE credits for every 30 minutes of the LIVE meeting that they attend. (Ex. Attend for 30 minutes = 0.5 CPE credits. Attend for 1 hour = 1 CPE credits). CPE Credit will be issued upon completion of the post-event survey. Please allow at least one week following the event to receive your CPE certificate.

Kaih Taylor, Manager, Third Party Risk Management, AgFirst Farm Credit Bank How to Mature Your TPRM Program Track 1: Anchoring TPRM Essentials & Best Practices Tuesday, April 8, 2025 3:10 - 4:00 PM Atlantic Ballroom 1 SESSION DESCRIPTION TPRM Maturity is critical to all organizations to stay ahead of the increasingly growing risk we are seeing in the TPRM Industry. This session aims to explore the maturity model, the requirements to mature your program and provide guidance on how to start your maturity journey. SPEAKERS Kaih Taylor Manager Third-Party Risk Management AgFirst Farm Credit Bank Ms. Taylor has been with AgFirst Farm Credit Bank since 2018 and is the Manager of the Third-Party Risk Management department at the Bank. She has lead the creation, development, and continuous enhancement of the bank’s Third-Party Risk Management program. Ms. Taylor is a Certified Regulatory Vendor Program Manager VI, through Compliance Education Institute, a Certified Third Party Risk Professional (CTPRP) through Shared Assessments. Ms. Taylor has over a decade… Show More Previous Next

WNTPRM March 2024 Leader Spotlight < See All < Previous Next > Gokcen Tapkan Director of Data Research Black Kite Biography Gokcen Tapkan is the Director of Data Research at Black Kite, where she plays a key role in leading cutting-edge AI and ML projects combining her past experience in cybersecurity, compliance and risk. With a background in cryptography, cybersecurity, and compliance, she brings 10+ years of expertise in the government sector, particularly in military-level information security. Since 2012, she has been an Expert Evaluator for European Projects. Holding a master's degree in Computer Engineering from Bosphorus University, Gokcen is not only dedicated to her professional role but also actively engaged in a charitable AI project focused on supporting children on the autism spectrum. Her commitment to leveraging technology for social good is a testament to her passion for making a positive impact Leadership Characteristics Gokcen would describe herself as a pro-active, multi-tasking, human champion person Leadership Challenges About three years ago, we encountered a significant challenge with a Compliance Automation project using an off-the-shelf large language model (LLM) for AI. As we delved into the data daily, it became apparent that something wasn't quite right with the model outcomes, so we decided to develop our own model. Within four months, the notion of developing this in-house model evolved into a full-time research project. Despite the maturity of the idea, resources were not as mature at that time. Fast forward to today, and LLMs, along with various models and services, are experiencing almost exponential growth. During those challenging times, we faced numerous sleepless nights, investing hours in data analysis, outcome evaluation and re-engineering- and I say "we"- because I was doing this with my team. Fortunately, back then, and still today, I have the support of an exceptional team — mostly women. Working in a relatively niche area, extracting meaningful model outcomes from the project posed a formidable challenge that ultimately proved successful. The journey was both painful and empowering. Key Take-a-ways "Stepping out of comfort zones and the endless pursuit of knowledge are pieces of advice generously shared by remarkable women in technology. But here's my take: always find something that genuinely inspires you. It's not about jumping from one thing to another; it's about discovering that sweet spot where passion and purpose align. The spot where you are unique and can fulfill yourself." Fun Fact One of my proudest moments in my career was when the European Commission offered me a contract to be their go-to for evaluating tech projects aiming for funding from the European Union. It was a tough and stressful gig, but I was up for the challenge. And there's a twist. Right in the middle of this whirlwind, I welcomed my first baby into the world. He was a tiny three-month-old when I took on this role that had me volleying between Brussels and working remotely with a brand new baby in my life. But I was determined to be there for him and nurse him until he hit the one-year mark. I did a bit of risk management and weighed my options. Rejecting the job seemed like slamming the door on future opportunities, so I went for it. I wasn't about to compromise on my commitment to nurse my son for at least a year. I made a setup in the Brussels office, complete with a pumping station to keep my nursing goal on track. During meetings, people couldn't help but notice his cute picture on my laptop background. Cue the questions: Who's this adorable baby? Who's looking after him and feeding him? (Cue the laughter upon the response.) Then after welcoming my second child, I needed to figure out how to be a nursing mom on a business trip. I was experienced now, so I used a similar station setup even while traveling.

Advocate Member | < Back Next > Supply Wisdom Risk Ratings/Intelligence Advocate Member CONTACT INFORMATION Pete Curtis Head of Marketing Supply Wisdom marketing@supplywisdom.com 🏆 TPRA's 2022 TPRM Service Provider Innovator Award Winner Watch Video Supply Wisdom transforms global business with comprehensive, predictive, real-time risk intelligence. Through continuous monitoring, comprehensive intelligence reports, and real-time alerts, Supply Wisdom speeds business growth, lowers costs, increases security and compliance, and unlocks revenue opportunities. Supply Wisdom’s full-stack AI-based SaaS products turn open-source data into risk intelligence and are the market’s only software to cover all risk domains in real-time: financial, cyber, operational, ESG, compliance, Nth party, and location-based risk. Supply Wisdom clients include Fortune 100 and Global 2000 firms in the financial services, insurance, healthcare, and technology sectors, including United Healthcare, BNY Mellon, and Bank of Ireland. Supply Wisdom values diversity with a global workforce that is currently 57% female. Show More TOP 10 PRODUCT FUNCTIONALITY CATEGORIES Full-spectrum supplier risk intelligence with coverage for the following risk domains: Financial Risk Cyber Risk SG Risk Compliance Risk Operations Risk Nth Parties Locations Accessible as real-time and continuous full-spectrum risk monitoring for suppliers and locations, comprehensive one-time risk reports, or instant risk scans. RESOURCES FROM THIS VENDOR MEMBER Understanding Digital Operational Resilience Act and Its Impact on TPRM Strategies SERVICE PROVIDER RESOURCE | October 3, 2024 Insights from Supply Wisdom's 2024 Survey of Risk Professionals: Risk Management in a Technology-Driven World SERVICE PROVIDER RESOURCE | July 22, 2024 Weekly Update: Global Supply Chain Disruptions - The Tigray Conflict: A Humanitarian Crisis in Ethiopia SERVICE PROVIDER RESOURCE | October 30, 2023 EVENTS FROM THIS VENDOR MEMBER NEWS & UPDATES Supply Wisdom recognized as an Incredible Workplaces(™) Gold Certified organization in the Mid Sized category. January 28, 2025 ADDITIONAL OPPORTUNITIES Previous Next

WNTPRM September 2023 Leader Spotlight < See All < Previous Next > Kim LaBarbiera Director & Counsel of Third-Party Risk American Express Biography Kim M. LaBarbiera is currently Director and Counsel for Third-Party Risk in the General Counsel’s Organization at American Express. In her practice, she provides global legal support to business and legal colleagues related to third-party risk, including strategy, third-party lifecycle management, fintech, bank vendor risk, compliance and audit functions, regulatory requirements and cloud computing, among other areas. Prior to American Express, Kim held various legal, compliance and risk roles including General Counsel and Chief Compliance Officer in London, Paris, and New York at firms including USAA, Lloyds Bank, and ING, among other global financial institutions. In April 2023, she was recommended by a U.S. Department of State’s Bureau of Educational and Cultural Affairs (ECA) and World Learning Peer Review Panel to serve as a risk management expert in the Fulbright Specialist Program, serving countries and institutions around the globe. Kim holds a BA in Political Science with a minor in Spanish from Boston College, a JD as a Centennial Scholar from Seton Hall Law School and a Masters of Law in Financial Regulation from Georgetown University, where she authored her thesis on the Regulation of Credit Default Swaps. In addition, she holds leadership and technology program certificates from Harvard and FINRA. She has also served in the Observer Program in the Division of Enforcement for the SEC. Kim is GDPR, CAMS, and CTPRP certified and has previously held Equity and Options FINRA principal licenses, among others. Kim is fluent in Spanish, and conversant in Italian and French, in which she has negotiated contracts for her various clients. She is a member of the New York and New Jersey state bar associations. Kim resides in Old Town Alexandria, VA, with her husband Rob and her chocolate lab and two cats. They enjoy travel, art appreciation, sailing, skiing, and scuba diving. Leadership Characteristics Kim believes in the servant-leader model of leadership and places her clients' needs and satisfaction as the cornerstone of her practice. A few of Kim's work mottos are: Some management principles will never go out of style, especially the one where you realize it is all about the people; Be the change you want to see in the company; Consider adopting progress over perfection and, Insist on having a job you love and loving your job, without compromise. Leadership Challenges "The financial services field has always been feast or famine which means members of its community must learn to embrace and thrive in periods of change. I have lost track of all the mergers, acquisitions and other industry changes through which I have navigated. If you work very hard, and stay passionate, the opportunities to weather the storm present themselves. The trick is to stay focused on the core principles: do your very best, freshen your skills everyday if possible, especially tech, be an excellent steward of the company, care about others, be fair, be patient, and try to smile and laugh as much as possible. Everything else takes care of itself." Key Take-a-ways "From my perspective, Third-Party Risk is one of the most exciting financial service fields to be in right now. It is exploding in growth and presents scores of opportunities to get in on the ground floor and make a difference. I liken it to compliance in the 2000s and privacy in the 2010's. I am so energized and excited to be here." Fun Fact I am an avid scuba diver and white water rafter and have been lucky enough to have gotten to go all over the world: Australia, Bali, Croatia, Italy, Mexico, Florida Keys, Oman, Grand Caymen and Belize.

WNTPRM January 2025 Leader Spotlight < See All < Previous Next > Donna Speckhard Risk Advisor Fannie Mae Biography Donna is an Internationally recognized risk and resilience advisor with 20+ years of experience working with Federal, State, local, NGOs, international governments and corporations. Donna has a proven track record of leading organizations in identifying, analyzing, mitigating emerging threats and risks through solution-oriented problem-solving. She is a published thought leader with a passion for Operational Risk and Resilience. A problem-solver of large, complex, cross-functional challenges and an advocate of using gamification, microsimulations, and thinking outside the box problem solving techniques. She has presented in 2024 at numerous conferences on the subject of risk and resilience advantages and adversities of the use of Artificial Intelligence. She sits on the Advisory Board for the Women in Leadership Program at the University of Colorado, Colorado Springs, as well as, the Advisory Board for MIT’s Resilience Courses where she also guest lectures as part of the program. She is a member of the Disaster Recovery Institute’s Women in Business Continuity Group and a mentor for TPRA’s Mentorship Program. She is a thought leader, a sought-after speaker at various industry conferences, and a published author. Leadership Characteristics Meyers Briggs – ENTP (no surprise!). Strategic thinker and problem solver Creative approaches to assist leadership in decision making Uses unique learning approaches to explore complex concepts such as: Gamification strategies, Employing use of tools that aid in learning like microsimulations Relationship builder Leadership Challenges Donna made the transition from supporting government entities to commercial business. This is a vast difference in approach when having gone from Federal, State, and local support to the commercial space where you have to market, brand, and sell products. Having shifted from the federal arena, she has also experienced working internationally both with governments and private sector entities. This has presented much larger compliance differences, cultural nuances, and challenges that she rapidly overcame and delivered successfully on for several international clients. Her ability to work with clients in multiple time zones and present online training to employees from different cultures earned her recognition from many clients in the international space. She led teams and projects to success through challenging threat incidents and events. One of the biggest challenges she sees consistently in this space is still knocking down silos across an enterprise and building a risk culture across the entirety of an organization. Key Take-a-ways "I am very intrigued by the risk AI poses to our industry. The speed at which AI is evolving is incredible. I think our industry is largely unprepared for what is to come. It’s not a matter of AI replacing our jobs - but more if we don’t adopt AI we will be replaced. AI is the new black. We should be continuously learning in our space to begin with and AI is no exception to that. It will be interesting to see how AI risk is managed in different organizations and how it aligns with regulations and compliance. If an organization is too conservative to adapt AI, just know, competitors, your third parties, fourth parties are using AI as are your employees just not in your secure space. Also regulators want to know how your organization is reviewing AI Risk." "I was once called a Resilience Unicorn. I suspect this is because I am a little ADHD, though it’s probably due to the wide skillset I have as a resilience professional. You have to be truly a jack of all trades in our profession. I definitely am always looking to do more, understand more. Constantly learn. Not everyone gets that. I am excited for what AI is going to do in our space. How it will evolve risk management. But we also need to think once we get more time as AI is adapted, what can I do now as a human that cannot be replaced by machine." Fun Fact Donna was raised in Heidelberg, Germany and lived there for 18 years. She produced an award-winning docuseries on childhood cancer, and as a result, is on IMDB.

< Back DEMO Q2 Demo Day Wednesday, May 14, 2025 Date Wednesday, May 14, 2025 Time 9 AM to 4 PM CT Intended Audience TPRM Practitioners Duration 6 hours CPE Credits 0 Fee Free Register Event Description The Third Party Risk Association (TPRA) invites you to attend " Demo Days ," an exclusive opportunity for TPRM practitioners to explore innovative solutions from leading TPRM Service Providers. During these interactive sessions, vendors will deliver 25-minute product demos , showcasing their tools, technologies, and services designed to address the complex challenges of third-party risk management. Show More SPEAKER(S) INFORMATION CPE CREDIT To learn about the organizations presenting on this day, please visit our Demo Days page at www.tprassociation.org/demo-days/ . About These Events Join the Third Party Risk Association (TPRA) for "Demo Days," where leading TPRM Service Providers showcase their solutions through 25-minute product demos tailored for TPRM practitioners. Explore cutting-edge tools, engage with vendors, and enhance your risk management strategies. Who Should Attend All TPRM practitioners, including TPRA Practitioner Members and non-members, are invited to these events. Employees of TPRM service provider organizations are not permitted to attend product demos unless they are affiliated with the organization presenting. Cancellations In the event that this session would need to be canceled, you will be contacted and invited to register for the rescheduled event. Questions & Concerns For more information regarding administrative policies such as complaints, please contact us at info@tprassociation.org . No CPE credits are provided for this event type.

Assist with planning our annual in-person conference! < Back WORK GROUP In-Person Conference Planning Volunteer Meeting Wednesday, June 25, 2025 Date Wednesday, June 25, 2025 Time 1:30 - 2:30 PM CT Intended Audience TPRA Volunteers Duration 60 minutes CPE Credits 0 Fee Free Register Event Description Meetings on the 1st & 3rd Wednesday of the Month from 1:30 - 2:30 PM CT Show More SPEAKER(S) INFORMATION CPE CREDIT These meetings contain updates and discussions on our in-person conference, volunteer tasks and assignments, and more. No CPE credits are provided for this event type.