On demand webinars

Taking a Strategic Approach to Your Third-Party Risk Management Program

Description

Who has access to your company’s data and what risks do they pose to your organization? While these questions seem basic, most organizations cannot confidently answer them, despite an accelerating trend of third-party threats and incidents. Building a robust third-party risk program is complex and takes time. Building a program that allows information security teams to be strategic in managing third-party risks is even more challenging. During this session, Optro’s Information Security team will guide you through how they successfully transitioned to a strategic and technology-enabled third-party risk program to manage this emerging source of risk.

About the speakers

Richard Marcus is the VP of Information Security at Optro, where he leads product, infrastructure, and corporate IT security functions as well as Optro’s own internal risk and compliance initiatives. In this capacity, he has become an Optro product power user, leveraging the platform’s robust feature set to help achieve SOC 2, GDPR, ISO 27001 compliance, and many other GRC initiatives. In his spare time, he enjoys exchanging insights with his information security leader peers in the Optro Community and participating in the Optro product development process. Prior to joining Optro, Richard led global GRC at Verizon Media and Security Operations at EdgeCast Networks.

John Volles is a Director of Information Security Compliance responsible for overseeing Optro’s compliance, risk, and privacy obligations as well as helping customers understand Optro’s security posture and position. John joined Optro from EY, where he reviewed and implemented client compliance programs and supporting technologies.

Loading form...