You are currently focusing on the certification. Go to program dashboard.
CPE Qualification: GRCA , GRCP
This item qualifies for CPE credit(s) accredited by GRC Certify if you watch it from beginning to end. Credit is automatically tracked to your certifications and recorded on your CPE Transcript.
Join this webinar for a crash course on making NIST work for third-party compliance and supply chain risks.
PLEASE NOTE. Certificates of Completion for CPE credit are not available for viewing of archived webinars. For GRCP holders, viewing of archived webinars will be automatically tracked and recorded in your Certification Dashboard on your Profile on the OCEG site and will count toward GRCP CPE requirements only.
Many organizations have standardized their internal information security controls and reporting on the National Institute of Standards and Technology (NIST) cybersecurity framework because of its direct mapping to multiple regulatory requirements. But is it possible to use NIST to also manage the growing concern of third-party and supply chain risks?
This webinar, delivered by compliance expert Thomas Humphreys, will dissect the NIST cybersecurity framework and explain how it can be used to identify and mitigate risks in your supplier ecosystem.
Learning Objectives:
• Discuss the basics of how to use the NIST framework for third-party risk management, including what NIST covers (and doesn’t)
• Review recent changes to the NIST framework and how those changes apply to third-party risk assessments
• Identify important updates you will need to make to your TPRM program in order to be in compliance with NIST
Speaker:
Thomas Humphreys, Content Manager, Prevalent
Featured in: Third Party Management , Risk Management
Information & Billing:
+1 (602) 234-9278
Principled Performance, Driving Principled Performance, Putting Principles Into Practice, OCEG, GRC360°, ActiveLearning, EventDay and LeanGRC are registered trademarks of OCEG.
Protector Skillset, Protector Mindset, Protector Code, Lines of Accountability, GRC Professional, GRCP, GRC Fundamentals, GRC Auditor, GRCA, GRC Audit Fundamentals, Data Privacy Fundamentals, Integrated Data Privacy Professional, IDPP, Policy Management Fundamentals, Integrated Policy Management Professional, IPMP, Integrated Audit & Assurance Professional, IAAP, Integrated Governance & Oversight Professional, IGOP, Integrated Strategy & Performance Professional, ISPP, Integrated Risk Management Professional, IRMP, Integrated Decision Management Professional, IDMP, Integrated Compliance & Ethics Professional, ICEP, Integrated Business Continuity Professional, IBCP, Integrated Information Security Professional, IISP are trademarks of OCEG.