Latest Discussions

  • Profile Picture

    RE: Due Diligence for Federal Government Entities

    This message was posted by a user wishing to remain anonymous First, I'm not sure what you mean by "level classification," but I do empathize with the struggle that comes with trying to treat ...

  • Yes, I'd request as much information as reasonably available. Certainly, all of the things like a reputation risk check, history of data breaches, articles of incorporation all come to mind - ...

  • We are reevaluating our vendors level classification and I would to know how are other agencies treating federal government entities like Fanny Mae, VA, or your State Housing authorities. These ...

  • Posted in: Risk Assessments

    I'm curious as to what even defines "smaller vendors" in your world? Are you referring to yearly spend and if so, would you mind sharing what that amount is? We use $5,000 as our first threshold. ...

Trending Discussions

  • Profile Picture

    Law Firms

    This message was posted by a user wishing to remain anonymous How are you addressing law firms? Given law firms and their individual lawyers are subject to binding ethical and legal ...

  • Good Morning Think Tank Members, Curious if anyone has a good slide show/info piece that they can share for the "sales side" of Vendor Requests? Looking for material that will help explain ...

    2 people like this.

Most Recent Announcements

  • COVID-19 Resources Page

    Hi Everyone,   With the COVID-19 pandemic upon us, organizations are implementing their pandemic plans, many employees are working remotely and changes in vendor management are rapidly occurring. In the industry, it has raised lot of questions about pandemic planning and best practices and reminds us no organization is immune to business impacting events. It’s important now more than ever to ... More
  • Happy New Year - We Want Your Feedback!

    Happy New Year ThinkTank members! We hope you've found the community discussions this past year to be enlightening and engaging. As we head into 2020, we want to hear your thoughts and feedback as it'll help us continue to understand what you'd like to see more of in the Third Party ThinkTank Community. What will help you the most?  Feel free to share your thoughts by messaging me directly.  Brittany ... More

Communities Built For You


Topic Communities

Join a community dedicated to an area of third party risk including contracts, infosec, risk assessments, policies and more.


Special Interest Communities

Network with others who are running very mature or complex programs at their organizations that require a unique way of thinking. 

Product Communities

Meet, connect and network with other users using the same third party risk tool as you - get support and share new ideas and best practices.

Learning Center


Resources Library

Download the latest guides, infographics, samples, whitepapers, checklists and more that can help guide you through best practices on third party risk.

Visit Resources

Live Webinars

Register and join live webinars to learn current trends and best practices from knowledgeable experts. Free CPE eligible webinars.

Register Now

Venminder Academy

Coming in 2020! Don't miss out - make sure to sign up to our notification list and be one of the first to know about our self-paced eLearning courses.

Get Notified

Learn more about the Third Party ThinkTank Community


The professionals who take on the job of third party risk ensure the right steps are taken to protect their organizations from vendor risks and avoid costly regulatory enforcement actions. While risk comes in many forms - a good third party risk management program can help address financial, reputation, credit, operational risk and much more during the business lifecycle. 

This dedicated and free community is open to those involved in or running third party risk management programs at their organization. Inside you have the opportunity to network, share stories, ask questions, give advice and gain access to a vast library of educational content, webinars and training opportunities. 


Latest Articles

  • Take a look at the latest third-party risk updates and articles our experts recommend during the month of May to make sure you're staying on top of the latest vendor management news.
  • With a rise in data breaches, both cybersecurity and data protection should be top of mind for every organization. Additionally, as concerns around data protection continue, privacy initiatives will be a focus and expectations and requirements will only increase. If you’re in one of the states considering legislation like the CCPA, or a subset of it, what steps should you take?
  • COSO 2013 was way ahead of its time. Given that, it’s even more interesting to note that it took until 2019 for the COSO 2013 Principles to be applied to SOC 2 audits. For those of us that have been in the vendor management world for many years, we have had a front row seat in watching the development and maturity of third-party risk management, what it means to us and what our regulatory agencies expect of us.