TPRM External Assessor Services

PRIMARY CONTACTS:
Eric M. Wright CPA, CITP
William M. Deller CISA, CTPRP, CTPRA, CCSFP

As the Third-Party Risk Management industry grows, the need for qualified assessor resources compounds.

Many TPRM practices preach industry best practices without having the boots on the ground to consistently execute these practices and adequately evaluate third parties. However, at Schneider Downs, our strength is in our people. Our assessors maintain a trifecta of technical expertise, business knowledge, and keen sense of risk to perform assessments successfully. Our trained assessors are readily available to inject themselves into any organization’s TPRM program and assist in preforming all levels of assessments and executing your TPRM program.

Schneider Downs’ External Assessor model is not a one-size-fits-all approach. We can provide External Assessor services in a multitude of ways to seamlessly fit into an organization’s TPRM program. For example:

• Virtual assessments
• On-site assessments
• Physical and environmental reviews
• Specialty assessments (e.g.: web application technical review, penetration testing, etc.)
• Specific subject matter expertise: IT, Cybersecurity, Financial, Operational, Compliance, Business Resiliency, etc. 
• Pre-contract third party evaluations (prior to acquisition or on-boarding a third party)

Here’s a suggested path for a TPRM assessment lifecycle :

Additional TPRM Services

• TPRM Ad-Hoc Review Services
• TPRM Capabilities and Maturity Services
• TPRM Program Implementation and Development
• TPRM Program Support Services
• TPRM Officer-as-a-Service
• TPRM Training, Education, and Awareness 

Schneider Downs TPRM Resources

Built by our tenured team of security, risk and compliance practitioners. We have leveraged decades of diverse subject-matter expertise and experience to be able to provide the following resources and tools:

• AICPA SOC Report Review Template  
• Schneider Downs TPRM Service Overview
• Schneider Downs TPRM Policy Template
• Schneider Downs Compliance and Third-Party Risk Management Guide
• Schneider Downs ‘Our Thoughts On’ Articles 

How Can Schneider Downs Help?

The Schneider Downs Risk Advisory Services team has the expertise, credentials and tools to help you build, implement, recalibrate, and manage a world-class third-party risk management program. We understand that outsourcing business functions to third parties is essential in today’s business environment.  While outsourcing provides benefits such as increased efficiency and cost savings, it also increases an organization’s risk exposure to a myriad of threats presented by outsourcing.  Understanding how to identify and manage the risks presented by third party providers is vital for any business.

Get more information on our Third-Party Risk Management services or contact us to get started today.