Together we outdrive our adversaries.

GRF Summit on Third-Party Risk

October 24 - 26, 2018  |  Lansdowne Resort & Spa  |  Leesburg, VA USA
all_logos-0001.png

The purpose of the GRF Summit on Third-Party Risk was to increase awareness of security best practices, offer an opportunity for collaboration among third-party vendors and organizations’ risk management teams, and provide a platform for security leaders to share expertise and learn from each
other to improve holistic security.

The Summit offered education and networking on the critical cyber and physical security issues facing organizations, their vendors, and the areas where the two groups intersect. 

Fellow Attendees Included ISAC/ISAO Member Orgs + Third-Party Vendors/Suppliers

Attendees at the event were CIOs/CISOs, Cyber and Physical Security Risk Management, Network Security and Compliance Teams within ISAC/ISAO Member Organizations, and third-party vendors/suppliers serving those organizations that need to ensure confidentiality, integrity, and availablity of client systems.

Event Background

Ongoing education and greater awareness are key to mitigating risk, as executives are starting to view security expenses as “pay now or pay more later.” Therefore, it is important that security leaders share their collective best practices and experience to help enhance critical security programs.

In its first iteration, this event was held by Aetna to educate its vendors on the threat landscape, Aetna’s policies and needs, and actionable recommendations for security improvements. Last year the Health ISAC (H-ISAC), formerly NH-ISAC, held the event and expanded on Aetna’s work to include many healthcare companies and vendors. Realizing that the need for increased security and stronger relationships are not industry specific, H-ISAC and its member organizations suggested that the Global Resilience Federation (GRF) take ownership of the event as a cross-sector summit to include the members and vendors of eight different information sharing communities. H-ISAC, Financial Services ISAC, Legal Services ISAO, Oil and Natural Gas ISAC, Energy Analytic Security Exchange, Retail Cyber Intelligence Sharing Center, National Retail Federation’s Retail ISAO, and Multi-State ISAC urged their member organizations to encourage security, risk management, compliance staff and third-party vendors to attend.

The relationship between organizations and their third-party vendors is a critical one but also one of increasing complexity from a cybersecurity, management and compliance perspective. The growth of cybercrime and expansion of regulation coming from entities like the New York State Department of Financial Services and the European Union make it even more critical for companies’ risk management and compliance staff to work closely with vendors. 

Stay tuned for more information on the 2019 Summit taking place September 30 to October 2!

Thank you to our 2018 Corporate Partners:

Corporate_Partners_logos-0001.png

Thank you to our 2018 Event Sponsors:

Attivo_CorpR-no-margins.png
Bandura_Cyber_Logo_24pt.png
CyberGRX_FinalLogo_Stacked_FullColor.png
cybervadis_logo_newblue_(1)_(5).png
logo_High_Res.jpg
DomainTools.jpg
H-EIQ-logo_GRF.jpg
Farsight-Purple-Org-Logo.png
Illusive_r_Horizontal_Orange_Slogen@4x.png
IntSights_Logo_AP_Summit.png
King-Union-Logo-Black.png
OPTIV_rgb.jpg
Prevalent-logo.jpg
Reprivata_Logo_2.jpg
riskrecon_logo_FullColor@4x.png
SecureityScorecard_blueblack_l.png
SYM_Horiz.png
Symphony2018_Logo_Black_expanded.jpg
third_party_trust.png

The GRF Summit on Third-Party Risk

October 24-26, 2018
Lansdowne Resort & Spa
Leesburg, VA USA