2017 AHIA September Webinar


Don't Let Third Parties Bring Down Your Business: Effective Vendor Management

Presented by:

Rebecca Herold, President, SIMBUS, LLC, and CEO, The Privacy Professor

This presentation will take place on Thursday, September 21, 2017 at 1:00pm Eastern time.

Non-member Price: $129

Session Description:

When you entrust vendors, and other types of third parties, with accessing and handling your business's data, you are basically placing all control of security and privacy measures completely into their hands. That trust cannot be blind. Many security incidents and privacy breaches have resulted from poor, or non-existent, security practices within outsourced organizations handling another company's data. When appropriately managed and with proper security controls in place, such third-party arrangements can benefit organizations. It is important for every business to understand the importance of managing the risks that can exist with such outsourced entities. This session will cover the key points of what organizations should know about the risks involved with entrusting business processing, operations and data handling to third parties and actions to take to mitigate those risks, covering:

  • High-level overview of legal requirements for ensuring sound vendor security and privacy practices
  • The risks involved with outsourcing including real-life examples
  • How to mitigate those risks
  • How to demonstrate to regulators that you are in compliance when someone else possesses your data

  • Learning Objectives:
    Following this discussion, participants will be able to:

  • Learners will be able to list at least 5 legal requirements for vendor/third party security and privacy oversight management.
  • Learners will be able to demonstrate due diligence for vendor/third party oversight management within their organization using the concepts and recommendations provided.
  • Learners will be able to utilize a list of 29 commonly encountered risks that vendors/third parties bring to organizations when performing vendor management audits.
  • Learners will obtain a vendor management framework that they will be able to utilize for auditing the vendor management program within their own organization.

  • Program Level: All

    Who Should Attend: IT Auditors, Compliance officers/practitioners, Information security officers/practitioners, Privacy officers/practitioners, Resourcing officers/practitioners

    Field of Study: Specialized Knowledge and Applications

    Prerequisites: Basic information security concepts

    Delivery Method: Interactive discussion using telephone and Internet technology.

    CPE Credits: 1

    Speaker Bio(s):

    Rebecca Herold, FIP, CISSP, CISM, CISA, CIPP/US, CIPT, CIPM, FLMI, President, SIMBUS, LLC, and CEO, The Privacy Professor
    Rebecca has more than 25 years of systems engineering, information security, privacy and compliance experience. Rebecca is an entrepreneur; she is CEO and Founder of The Privacy Professor® consultancy she established in 2004, and is Co-Founder and President of SIMBUS, LLC, and information security, privacy, technology & compliance management cloud service for organizations of all sizes, in all industries, in all locations. Rebecca has authored 18 books, dozens of book chapters, and hundreds of published articles. Rebecca led the NIST SGIP Smart Grid Privacy Subgroup for seven years, was a founding member and officer for the IEEE P1912 Privacy and Security Architecture for Consumer Wireless Devices Working Group, and serves on the Advisory Boards of numerous organizations. Rebecca also serves as an expert witness for information security, privacy, and compliance issues. Rebecca was an Adjunct Professor for the Norwich University MSISA program for many years. Rebecca is frequently interviewed, including regularly on the KCWI23 morning television show, and quoted in diverse broadcasts and publications. Rebecca holds the following certifications: FIP, CISSP, CISA, CISM, CIPT, CIPM, CIPP/US, FLMI. Rebecca is based in Des Moines, Iowa. www.SIMBUS360.com, www.privacyprofessor.org,www.privacyguidance.com, rebeccaherold@rebeccaherold.com.

    Please Note: If you wish to receive continuing professional education credits for participating in the discussion, you are required to register and pay the registration fees. You will also be required to answer 3 of the 4 questions asked online during the discussion to qualify for CPE credit.

    Cancellations received in writing prior to a week before the discussion will be issued a refund less a $30 processing fee. No refunds for cancellations within the week of the discussion. For more information regarding refund, complaint and program cancellation policies, please contact AHIA at 888-ASK-AHIA (275-2442).

    Continuing Professional Education Credits:
    AHIA is registered with the National Association of State Boards of Accountancy (NASBA) as a sponsor of continuing professional education on the National Registry of CPE Sponsors. State boards of accountancy have final authority on the acceptance of individual courses for CPE credit. Complaints regarding registered sponsors may be submitted to the National Registry of CPE Sponsors through its website:www.learningmarket.org. In accordance with the standards of the National Registry of CPE Sponsors, CPE credits have been granted based on a 50-minute hour. National Registry of CPE Sponsors ID Number 103386.


    September 21, 2017through September 21, 2017
    Your Office/Home

    Conference Packages

    Pass Name


    Main Registration Registration and CPE are included in the cost.

    Members: Complimentary
    Non-members: $129

    Additional Registrant For groups of 2 or more registrants, each additional person receives a $30 discount off of the main registration fee. (First registration is $129 for non-members).


    Events for Thursday, September 21, 2017 Date Time
    2017 AHIA September Webinar Sep 21, 2017 1:00 PM to 2:00 PM
    Back To Top