Home

Latest Discussions

  • Profile Picture

    RE: Do you perform risk assessments on software providers?

    By: Anonymous Member , 2 days ago
    Posted in: Risk Assessments

    This message was posted by a user wishing to remain anonymous ​I had a similar question regarding VARs (Value Added Resellers). We have a few VARs that provide various applications, software, ...

  • Profile Picture

    Do you perform risk assessments on software providers?

    By: Mark Ewert , 2 days ago
    Posted in: Risk Assessments

    Most organizations purchase some form of software that runs on the organization's computer equipment - Windows operating system, Microsoft Office, Adobe Acrobat along with more industry or occupation ...

  • Profile Picture

    RE: Member Contact List for Credit Union

    By: Rosalie Stremple , 3 days ago
    Posted in: Due Diligence and Ongoing Monitoring

    We consider our customer list (the equivalent of your member list) non-public confidential information. If the vendor has access to your member list as part of delivery of their services, ...

  • Profile Picture

    Member Contact List for Credit Union

    By: Christy Jones , 3 days ago
    Posted in: Due Diligence and Ongoing Monitoring

    ​ Would you consider a member's list to be non public or public information at a credit union? We have always kept it as our own, but now we are having vendors who need that information. Would ...

Upcoming Webinars

Trending Discussions

  • Profile Picture

    Member Contact List for Credit Union

    By: Christy Jones , 3 days ago
    Posted in: Due Diligence and Ongoing Monitoring

    ​ Would you consider a member's list to be non public or public information at a credit union? We have always kept it as our own, but now we are having vendors who need that information. Would ...

  • Profile Picture

    Non public personal information

    By: Anonymous Member , 4 days ago
    Posted in: Due Diligence and Ongoing Monitoring

    This message was posted by a user wishing to remain anonymous If a TPSP only has access to name and address is that still considered NPPI? or Name and email address?

Most Recent Announcements

  • COVID-19 Resources Page

    By: Brittany Padgett Brittany Padgett , 3 months ago
    Hi Everyone,   With the COVID-19 pandemic upon us, organizations are implementing their pandemic plans, many employees are working remotely and changes in vendor management are rapidly occurring. In the industry, it has raised lot of questions about pandemic planning and best practices and reminds us no organization is immune to business impacting events. It’s important now more than ever to ... More

  • Happy New Year - We Want Your Feedback!

    By: Brittany Padgett Brittany Padgett , 6 months ago
    Happy New Year ThinkTank members! We hope you've found the community discussions this past year to be enlightening and engaging. As we head into 2020, we want to hear your thoughts and feedback as it'll help us continue to understand what you'd like to see more of in the Third Party ThinkTank Community. What will help you the most?  Feel free to share your thoughts by messaging me directly.  Brittany ... More

Communities Built For You

community-icon1.png

Topic Communities

Join a community dedicated to an area of third party risk including contracts, infosec, risk assessments, policies and more.

 

community-icon2.png
Special Interest Communities

Network with others who are running very mature or complex programs at their organizations that require a unique way of thinking. 

community-icon3.png
Product Communities

Meet, connect and network with other users using the same third party risk tool as you - get support and share new ideas and best practices.

Learning Center

community-icon1.png

Resources Library

Download the latest guides, infographics, samples, whitepapers, checklists and more that can help guide you through best practices on third party risk.

Visit Resources

community-icon2.png
Live Webinars

Register and join live webinars to learn current trends and best practices from knowledgeable experts. Free CPE eligible webinars.

Register Now

community-icon3.png
Venminder Academy

Coming in 2020! Don't miss out - make sure to sign up to our notification list and be one of the first to know about our self-paced eLearning courses.

Get Notified

Learn more about the Third Party ThinkTank Community

learnmore-image-300.png

The professionals who take on the job of third party risk ensure the right steps are taken to protect their organizations from vendor risks and avoid costly regulatory enforcement actions. While risk comes in many forms - a good third party risk management program can help address financial, reputation, credit, operational risk and much more during the business lifecycle. 

This dedicated and free community is open to those involved in or running third party risk management programs at their organization. Inside you have the opportunity to network, share stories, ask questions, give advice and gain access to a vast library of educational content, webinars and training opportunities. 

Learn More   GETTING STARTED

Most Active Members

Latest Articles

  • July 2020 Vendor Management News

    3 days ago
    Catch up on these latest third-party risk resources and articles our experts recommend during the month of July to make sure you're staying on top of the latest vendor management industry news.

  • Remote Vendor Management Exams During a Pandemic Crisis

    4 days ago
    Let’s face it. The working world has changed a bit over the past few months. Many of us in the industry are mainly doing our jobs remotely, and at times, lacking access to things that we realize are back at the office. And to take it a step further, the regulatory examiners are also working remotely.

  • Who Is a Critical Vendor?

    5 days ago
    When it comes to third-party risk management, we cannot overstate how important it is to understand who your critical vendors are. For better or worse, they can have a significant impact on your organization. That being said, in order to best mitigate risk, your third parties should be ranked as critical or non-critical for business disruption and ranked high, moderate or low, on all regulatory items.
View More