Companies Plan to Change Third-Party Vendors that Pose Highest Risks, According to Protiviti and Shared Assessments Survey - Insurance News | InsuranceNewsNet

InsuranceNewsNet — Your Industry. One Source.™

Sign in
  • Subscribe
  • About
  • Advertise
  • Contact
Home Now reading Newswires
Topics
    • Advisor News
    • Annuity Index
    • Annuity News
    • Companies
    • Earnings
    • Fiduciary
    • From the Field: Expert Insights
    • Health/Employee Benefits
    • Insurance & Financial Fraud
    • INN Magazine
    • Insiders Only
    • Life Insurance News
    • Newswires
    • Property and Casualty
    • Regulation News
    • Sponsored Articles
    • Washington Wire
    • Videos
    • ———
    • About
    • Meet our Editorial Staff
    • Advertise
    • Contact
    • Newsletters
  • Exclusives
  • NewsWires
  • Magazine
  • Newsletters
Sign in or register to be an INNsider.
  • AdvisorNews
  • Annuity News
  • Companies
  • Earnings
  • Fiduciary
  • Health/Employee Benefits
  • Insurance & Financial Fraud
  • INN Exclusives
  • INN Magazine
  • Insurtech
  • Life Insurance News
  • Newswires
  • Property and Casualty
  • Regulation News
  • Sponsored Articles
  • Video
  • Washington Wire
  • Life Insurance
  • Annuities
  • Advisor
  • Health/Benefits
  • Property & Casualty
  • Insurtech
  • About
  • Advertise
  • Contact
  • Editorial Staff

Get Social

  • Facebook
  • X
  • LinkedIn
Newswires
Newswires RSS Get our newsletter
Order Prints
November 16, 2017 Newswires
Share
Share
Post
Email

Companies Plan to Change Third-Party Vendors that Pose Highest Risks, According to Protiviti and Shared Assessments Survey

PR Newswire

MENLO PARK, Calif., Nov. 16, 2017 /PRNewswire/ -- Global consulting firm Protiviti and the Shared Assessments Program's annual Vendor Risk Management Benchmark Study, released today, finds that a majority (53 percent) of organizations surveyed are likely to exit or change (de-risk) relationships with some vendors due to heightened risk levels. The reason cited most often was fourth-party risk issues and an inability to resolve them.

Protiviti logo. (PRNewsFoto/Protiviti)

Insurance companies, including healthcare payers, appear much more likely to make de-risking moves, with cost concerns and a lack of internal expertise to evaluate vendor controls cited as other primary reasons. The study, now in its fourth year, finds that 71 percent of these organizations will likely change their high-risk relationships over the next 12 months. Nearly half of all respondents (48 percent) said it has become imperative from a risk and regulatory standpoint to assess vendors' contractors.

The survey of 539 C-suite executives and risk management and audit professionals was conducted across a wide range of industries in the second and third quarters of 2017, with the majority of their organizations having revenues exceeding $1 billion. According to respondents, companies' board-level engagement around cybersecurity risks has improved notably during the past year. Massive and costly cyberattacks – including WannaCry, Petya and the Equifax hack, among others – have struck in the past year, forcing organizations, and healthcare providers in particular, to rethink key components of their vendor risk management approaches.

"While our study revealed increased board engagement in cybersecurity, there is an 'engagement gap' in that boards remain more engaged in their own companies' internal cybersecurity risks than the cybersecurity risks of the organizations' vendors, which can have negative repercussions if even one of those vendors has a severe data breach," said Cal Slemp, managing director, security program and strategy services, Protiviti. New cybersecurity-related regulations, such as the EU's General Data Protection Regulation (GDPR), China's complex Cyber Security Law (CSL) and the stringent New York Department of Financial Services (NYDFS) Cybersecurity Requirements, have taken effect in the past year or are set to go into effect in the near future. "Even though companies have made strides in their vendor risk management practices as evident in this year's survey results, many organizations may not have access to enough vendor risk management expertise to mitigate their risks," added Slemp.

"Despite some improvement in vendor risk management overall, our study has found that – with some notable exceptions – progress has been incremental since the study's first iteration in 2014. The single most important step an organization can take to improve its third-party risk management performance is to undertake periodic, arm's length evaluations of its program's effectiveness. Regular benchmarking is extremely important given the challenges associated with a rapidly evolving, volatile external risk and regulatory environment," said Gary Roboff, senior advisor, The Santa Fe Group, Shared Assessments Program.

The research, which looks at organizations' maturity of vendor risk management, is based on the comprehensive Vendor Risk Management Maturity Model (VRMMM) developed by the Shared Assessments Program.

Resources Available to Learn More

Protiviti will host a complimentary webinar at 10:00 a.m. PST on November 30, 2017 to discuss the results of the survey and offer insights into what organizations can do to raise their vendor risk management maturity levels. Joining Roboff on the one-hour webinar will be Paul Kooney, a director in Protiviti's security and privacy practice. To register, please visit www.protiviti.com/webinars. They have also recorded a podcast about the survey findings, which can be found at www.protiviti.com/vendor-risk. The site also hosts an infographic and a short video of the survey's highlights.

To access a complimentary copy of the full report, 2017 Vendor Risk Management Benchmark Study, please click here.

About the Shared Assessments Program

The Shared Assessments Program is the trusted source for third party risk management with resources, including tools and best practices, to effectively manage the critical elements of the vendor risk management lifecycle. Members represent a collaborative, global, peer community of information security, privacy, and third party risk management leaders in industries including financial services, insurance, brokerage, healthcare, retail, and telecommunications. The Certified Third Party Risk Professional (CTPRP) certification program, membership, and use of the Shared Assessments Program Tools, ensure organizations stay current with the threat and risk environment, including regulations, industry standards, and guidelines. Shared Assessments provides organizations and their service providers the rigorous controls needed for IT, data security, privacy, and business continuity. The Shared Assessments Program is managed by The Santa Fe Group (www.santa-fe-group.com), a strategic consulting company based in Santa Fe, New Mexico. On the web at http://www.sharedassessments.org.

About Protiviti

Protiviti (www.protiviti.com) is a global consulting firm that delivers deep expertise, objective insights, a tailored approach and unparalleled collaboration to help leaders confidently face the future. Through its network of more than 70 offices in over 20 countries, Protiviti and its independently owned Member Firms provide clients with consulting solutions in finance, technology, operations, data, analytics, governance, risk and internal audit.

Protiviti has served more than 60 percent of Fortune 1000® and 35 percent of Fortune Global 500® companies. The firm also works with smaller, growing companies, including those looking to go public, as well as with government agencies. Protiviti is a wholly owned subsidiary of Robert Half (NYSE: RHI). Founded in 1948, Robert Half is a member of the S&P 500 index.

Protiviti is not licensed or registered as a public accounting firm and does not issue opinions on financial statements or offer attestation services.

Editor's note: infographic of survey highlights available in PDF or JPEG formats. Photos available upon request.

 

View original content with multimedia:http://www.prnewswire.com/news-releases/companies-plan-to-change-third-party-vendors-that-pose-highest-risks-according-to-protiviti-and-shared-assessments-survey-300557579.html

SOURCE Protiviti

Older

Digital Matrix Systems, Inc. Joins Silicon Valley Insurance Accelerator

Newer

BNY Mellon Wealth Management Names Peter Paolilli as Senior Wealth Director in Chicago, Illinois

Advisor News

  • The overlooked retirement security risk that must be addressed
  • What advisors should know about hedge funds in retirement planning
  • Retirement control is top success measure for middle class, ACLI says
  • Industry groups applaud House passage of Financial Exploitation Prevention Act
  • Younger workers more likely to be eligible for a retirement plan after changing jobs
More Advisor News

Annuity News

  • MassMutual Ranks No. 100 on the 2026 Fortune 500® List
  • What’s fueling record annuity growth?
  • Jackson Named InvestmentNews 2026 Annuities Provider of the Year
  • State Farm’s agency overhaul: What distribution can learn
  • IRI, ACLI express support for CLEAR Forms Act
More Annuity News

Health/Employee Benefits News

  • Nation's first state-run long-term care insurance program about to launch in WA
  • NH Dems decry Medicaid premium increases
  • CVS Pharmacy, Inc. Trademark Application for “AETNA” Filed: CVS Pharmacy Inc.
  • Anthem to cut Medicaid coverage for Meridian Health Services
  • Kobach sues Kansas employee insurer Aetna for 'misappropriating' state funds
More Health/Employee Benefits News

Life Insurance News

  • NAIFA praises House committee approval of Clarity for Compensation Act
  • PHL Variable liquidation pushed out to 2027, Connecticut regulators say
  • ‘Recession-Proof’ Insurance Is Trending. Safety Net or Scam?
  • Winged Keel Group Expands National Presence and PPLI Leadership, Welcomes SBSI, Inc. (dba NFP Insurance Solutions)
  • MassMutual Ranks No. 100 on the 2026 Fortune 500® List
More Life Insurance News

NEWS INSIDE

  • Companies
  • Earnings
  • Economic News
  • INN Magazine
  • Insurtech News
  • Newswires Feed
  • Regulation News
  • Washington Wire
  • Videos

FEATURED OFFERS

Life moves fast. Your BGA should, too.
Stay ahead with Modern Life's AI-powered tech and expert support.

A MYGA for Clients Hesitant to Commit to One Long-Term Rate
First-year certainty. Annual rate updates. Get the CurrentRate® MYGA Sales Kit.

Elite Networking & Insights Await at the Event of the Year
The industry's premier conference for leaders driving what’s next in financial services.

Press Releases

  • Prosperity Life GroupSM Launches Prosperity PathWaySM Series, Bringing Greater Choice and Flexibility to Retirement Income Planning
  • Senior Market Sales® Fortifies Annuity Reach With Acquisition of Retirement Planning Firm Stratton & Company
  • RFP #T01625
  • Rockwood Programs Appoints Kerry Ladouceur as Vice President, Financial Lines
  • JP Insurance Group Launches Commercial Property & Casualty Division; Appoints Joe Webster as Managing Director
More Press Releases > Add Your Press Release >

How to Write For InsuranceNewsNet

Find out how you can submit content for publishing on our website.
View Guidelines

Topics

  • Advisor News
  • Annuity Index
  • Annuity News
  • Companies
  • Earnings
  • Fiduciary
  • From the Field: Expert Insights
  • Health/Employee Benefits
  • Insurance & Financial Fraud
  • INN Magazine
  • Insiders Only
  • Life Insurance News
  • Newswires
  • Property and Casualty
  • Regulation News
  • Sponsored Articles
  • Washington Wire
  • Videos
  • ———
  • About
  • Meet our Editorial Staff
  • Advertise
  • Contact
  • Newsletters

Top Sections

  • AdvisorNews
  • Annuity News
  • Health/Employee Benefits News
  • InsuranceNewsNet Magazine
  • Life Insurance News
  • Property and Casualty News
  • Washington Wire

Our Company

  • About
  • Advertise
  • Contact
  • Meet our Editorial Staff
  • Magazine Subscription
  • Write for INN

Sign up for our FREE e-Newsletter!

Get breaking news, exclusive stories, and money- making insights straight into your inbox.

select Newsletter Options
Facebook Linkedin Twitter
© 2026 InsuranceNewsNet.com, Inc. All rights reserved.
  • Terms & Conditions
  • Privacy Policy
  • InsuranceNewsNet Magazine

Sign in with your Insider Pro Account

Not registered? Become an Insider Pro.
Insurance News | InsuranceNewsNet