Risk Management Show

Unpacking TPRM's Split Focus: What It Means for Risk Managers in 2024 with Loren Johnson

Dec 16, 2024

Loren Johnson, a Risk Evangelist at Aravo specializing in third-party risk management, discusses the evolving landscape of risk management. He examines the split between cybersecurity and traditional risk practices, emphasizing the need for cohesive strategies. Loren highlights how regulations like DORA are shaping TPRM and offers practical advice for improving risk management approaches. He also dives into the role of AI and technology, advocating for a holistic view of risk management in today’s interconnected business landscape.

23:59

Creator website

Episode guests

Loren Johnson

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

The split focus between cybersecurity and traditional risk management necessitates a reassessment of organizational structures for effective third-party risk management.

Emerging regulations like DORA are driving organizations towards unified risk management strategies to ensure accountability and compliance for both cyber and non-cyber risks.

Deep dives

Bifurcation of Third-Party Risk Management

Third-party risk management has increasingly split into two distinct areas: cybersecurity and non-cybersecurity. Each area has its own characteristics, with the cyber side demanding a faster response due to the immediate implications of breaches and vulnerabilities. Non-cyber risks, such as supply chain issues and compliance violations, tend to unfold over a longer timeline, allowing for more strategic planning. The emerging differences are prompting organizations to reassess how they structure their risk management teams to ensure efficiency and comprehensive oversight across both domains.

Intro

2min

Understanding the Divergence in Third-Party Risk Management

4min

Bridging the Gap in Third-Party Risk Management

11min

Prioritizing Effective Risk Management Solutions

3min

The Strategic Importance of Third-Party Risk Management

2min

Wrapping Up with Opportunities for Engagement and Growth

2min

In this episode, we dive deep into the world of Third-Party Risk Management (TPRM) with Loren Johnson, Risk Evangelist at Aravo.

We explore the growing divide between cybersecurity and traditional risk management practices, and how this split is reshaping TPRM programs worldwide.

Key topics discussed:

• The bifurcation of TPRM into cybersecurity and non-cybersecurity camps

• Lessons from traditional risk practices applicable to cybersecurity

• Impact of regulations like DORA on TPRM and cybersecurity practices

• Practical steps for organizations to strengthen their TPRM programs

• The critical role of AI and technology in modern risk management.

Lauren shares valuable insights on how businesses can stay ahead of evolving regulatory requirements and offers practical advice for Chief Risk Officers and compliance managers looking to optimize their TPRM strategies.

Don't miss this essential discussion on the future of risk management and the importance of a holistic approach to TPRM in today's rapidly changing business landscape.

If you want to be our guest or suggest a guest for our show, send your email to info@globalriskconsult.com with the subject line "GRC Show Guest Suggestion."

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

Risk Management Show

Unpacking TPRM's Split Focus: What It Means for Risk Managers in 2024 with Loren Johnson

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

Bifurcation of Third-Party Risk Management

Regulatory Influence on Risk Management Practices

Strategic Importance of Effective Risk Management

Remember Everything You Learn from Podcasts