Many enterprises rely on third-party vendors to help facilitate the delivery of products and services to their customers. However, these relationships do not come without risk.
Ultimately, the enterprise is accountable for the protection of its data; therefore, enterprise vendor risk management must ensure a safe and healthy relationship with suppliers. Enterprises must also have sound governance, which includes business and technical requirements to ensure due diligence in the protection of the enterprise and its customers’ data. A robust third-party risk management program includes the integration of risk management processes into enterprise and IT business practices.
In this webinar OneTrust and ISACA will discuss the key processes organizations should undertake to manage vendor risk and the best practices they can put in place when assessing, onboarding, monitoring and offboarding third-party vendors.
CIPP/E, CIPM, Privacy Engineer, Vendorpedia
Kelsey Naschek serves as a Privacy Engineer at OneTrust – the largest and most widely used technology platform to operationalize privacy, security and third-party risk management.
In her role, Naschek advises many of the world's leading organizations on CCPA, GDPR and ePrivacy (Cookie Law) solution implementations, focused on formulating efficient and effective responses to data protection requirements as well as building and scaling global privacy programs.
With over five years of professional information technology experience, Naschek’s background combines extensive cross-functional solution implementations, as well as program management and business process design. She is a Certified Information Privacy Professional (CIPP/E, CIPM) and earned a Bachelor of Business Administration in Management Information Systems and Finance from the University of Georgia.