Suppler Risk Management Archives - Page 11 of 11

ERiSA Plan Sponsors Need to Verify That All Service Providers and Vendors Meet DOL Cybersecurity Guidelines

August 26, 2022July 25, 2022 by Thomas Canova

The Department of Labor’s (DOL) release of cybersecurity best practices for plans covered by the Employee Retirement Income Security Act (ERISA) makes it clear that plan sponsors, service providers, and participants share responsibility for protecting plan accounts. The guidance, which includes tips for hiring service providers, cybersecurity program best practices, and online security tips, provides … Read more

New SEC Cybersecurity Reporting Requirements – What Companies Need to Consider

July 20, 2022July 18, 2022 by Thomas Canova

In March of this year, the Securities and Exchange Commission (SEC) proposed a set of rules and amendments that the agency expects will strengthen the financial sector’s defense against cyberattacks. They seek to standardize disclosures and admissions of material cybersecurity incidents and improve visibility into a company’s cybersecurity risk management and governance policies to better inform investors. … Read more

The Essentials of Third-Party Vendor / Supplier Management Programs

July 13, 2022 by Thomas Canova

Vendor Risk Management (VRM), Third-Party Risk Management (TPRM), and Supplier Risk Management (SRM) are programs that companies employ to assess their relationships with third parties or suppliers for potential risk. The most common types of risk a company will want to evaluate for are regulatory, operational, financial and reputational. The purpose and function of VRM, TPRM and SRM are similar: the core process is to identify, assess, monitor and mitigate risk. The slight variations between each program depend on your company’s … Read more

Other Pages

Quick Links