October 22, 2020
Risks in today’s fast-paced environment are continuing to evolve with respect to third-parties. With so many employees working remotely, we increasingly depend on third-party technologies, external data sources and outside service providers. This makes identifying and managing your organization’s cybersecurity and privacy risks more critical than ever before.
Join GRF’s Risk & Advisory experts for an interactive discussion exploring how third-party risk programs are meeting security expectations, highlighting areas where many organizations are falling short, and identifying possible solutions to close these gaps.
Topics and Questions
- The value of third-party risk management (TPRM) in your organization
- TPRM’s role in cybersecurity and privacy
- Is your current third-party oversight adequate? Does your organization’s risk management of third parties occur throughout the lifespan of the relationship, or primarily just during the onboarding process?
- How to develop your organization’s TPRM framework in an efficient and cost effective manner while also maintaining baseline security and privacy expectations
Melissa Musser, CPA, CITP, CISA | Principal, Risk & Advisory Services | GRF CPAs & Advisors
Mrs. Musser is a principal at GRF CPAs & Advisors with over 15 years of professional experience. She and her team deliver comprehensive risk-based assessments to help organizations respond to strategic, financial, compliance, operational and IT risks. Her expertise includes establishing, maintaining and optimizing internal controls, compliance, Enterprise Risk Management (ERM), and cybersecurity programs. Mrs. Musser is the proud recipient of the 2018 AICPA Information Management and Technology Assurance (IMTA) Standing Ovation award.
Ricardo Trujillo, CPA, CITP, CISA | Partner, Audit | GRF CPAs & Advisors
Mr. Trujillo has worked in auditing and accounting since 2000. He has proven expertise in audits, reviews and compilations, management advisory services and tax preparations for corporations, partnerships, employee benefit plans and individuals. His nonprofit experience spans across a variety of organizations including foundations, trade and membership associations, charitable institutions and US-based non-governmental organizations. Mr. Trujillo leads the firm’s information technology audit initiative and helps for-profit and nonprofit organizations bridge the gap between business and technology by carefully analyzing IT infrastructures.
Darren Hulem, CISA, Security+, PCIP
IT & Risk Analyst
GRF CPAs & Advisors