Menu
0
    0

    Your Cart is Empty

    View NIST RMF Control Families

  • Add description, images, menus and links to your mega menu

    A column with no settings can be used as a spacer

    Link to your collections, sales and even external links

    Add up to five columns

  • Add description, images, menus and links to your mega menu

  • A column with no settings can be used as a spacer

  • Link to your collections, sales and even external links

  • Add up to five columns

  • Previous
    Home / All Documents / Third-Party Risk Management (TPRM) Program
    Third-Party Risk Management (TPRM) Program

    Third-Party Risk Management (TPRM) Program

    $449.99
    View Sample Centris ONE Documents

    Need Assistance?
    Contact CENTRIS ONE at 214-984-2346

    Product Overview: Comprehensive Third-Party Risk Management (TPRM) Program developed by Centris that includes detailed measures for building a highly-effective TPRM program for assessing and monitoring all relevant third-parties with a formalized and documented due-diligence (both for initial vetting and continuous monitoring) process.  

    Centris offers a wide-range of world-class security and privacy documents for today's growing regulatory compliance mandates. 

    Details & Specifications:The Privacy Impact Assessment (PIA) Program includes the following sections:  (1). Overview. (2). Phase I: Risk Based Approach. (3). Phase II: Define Risk and Appropriate Level of Due-Diligence for Identified Parties. (4). Phase III: Performing Due-Diligence (See Appendices to Use). (5). Vendor Management Program (See Appendices to Use). (6). Appendices: 

    • Appendix A – Initial Screening of Potential Third Parties, Appendix A.1 – Third-Party Information, 
    • Appendix B – Risk Factors for Due-Diligence
    • Appendix C.1 – Third-Party Due-Diligence Procedures – Key Risks
    • Appendix C.2 – Third-Party Due Diligence Procedures – Information Security
    • Appendix C.3 – Third-Party Due Diligence Procedures – PII & PHI
    • Appendix C.4 – Third-Party Due Diligence Procedures – Cardholder Data
    • Appendix C.5 – Third-Party Due Diligence Procedures – Compliance
    • Appendix C.6 – Third-Party Due Diligence Procedures – Reputation
    • Appendix C.7 – Third-Party Due Diligence Procedures – Strategic
    • Appendix C.8 – Third-Party Due Diligence Procedures – Operational
    • Appendix C.9 – Third-Party Due Diligence Procedures – Transaction
    • Appendix C.10 – Third-Party Due Diligence Procedures – Credit
    • Appendix C.11 – Third-Party Due Diligence Procedures – Country
    • Appendix C.12 – Third-Party Due Diligence Procedures – Third-Party
    • Appendix C.13 – Third-Party Due Diligence Procedures – Interest Rates
    • Appendix C.14 – Third-Party Due Diligence Procedures – Liquidity
    • Appendix C.15 – Third-Party Due Diligence Procedures – Legal
    • Appendix C.16 – Third-Party Due Diligence Procedures – Market
    • Appendix D.1 – Annual Vendor Management Questionnaire (All Risks and Categories).

      Compliance Mapping: Can be utilized for NIST 800-53ISO/IEC 27001/2, and all other major information security, cybersecurity, and data privacy laws, regulations, and frameworks. Contact Centris today to learn more. 

      Document Format: Microsoft Word

      Length: 58 pages.

      Read all our FAQs

      Get Access to 100 + NIST RMF security and privacy policies & procedures, programs, and plan templates.