Auditing Third Party Risk Management
February 19, 2019
1:00–2:00 p.m. ET
This webinar will assist internal auditors in becoming better informed and educated on risks related to third-party providers and how their organization manages them. Risks across the full vendor life cycle will be discussed, including the appropriate sourcing, ongoing management, and termination of vendors. This webinar will also explore risks resulting from the types of services being provided and the sensitivity of data being shared is covered. Finally, we will discuss considerations for planning and executing third-party risk audits appropriate to the size, scale, and risks facing an organization.
- Learn about key roles, responsibilities, and risks involved in managing third-party providers.
- Learn how to design a third-party risk audit coverage approach.
- Get tips on how to approach assessing third-party risk management activities across the business, oversight, and control functions.
Course Duration: 1 hour
CPEs Available: 1
Knowledge Level: Basic
Field of Study: Auditing
Advance Preparation: None
Delivery Method: Group Internet Based
Senior Managing Director, Deputy Chief Auditor, TIAA
As Senior Managing Director, Deputy Chief Auditor within the Internal Audit Division at TIAA, a Fortune 100 financial services organization, Tim Penrose serves as a member of TIAA’s Enterprise Leadership Group (ELG). He leads a team of audit professionals across multiple locations in providing end-to-end audit coverage of Institutional Financial Services and the Institutional businesses, as well as Client Services & Technology. Tim has over 19 years of internal audit, consulting, risk and information technology experience working within multiple global organizations.
Prior to joining TIAA, Tim was a Senior Manager at Ernst & Young within Risk and Technology Advisory Services, providing internal audit, risk management, technology advisory, and project management services within leading organizations across multiple industries. Tim’s experience also includes risk and technology related roles with Citigroup, Intel, and the Department of Defense.
Tim currently serves as Vice Chair of IIA's Financial Services Guidance Committee (FSGC), as well as on the Board of Directors for the Charlotte Chapter of the IIA. He graduated with a Computer Engineering degree from Mississippi State University and obtained his MBA from the University of South Carolina. Tim is a Certified Internal Auditor (CIA) and maintains several other professional certifications.