From Security Weekly WikiJump to navigationJump to search
= Interview: Third Party Vendor Management - Tom Garrubba, Santa Fe Group/Shared Assessments =
[[File:TomGarrubba.jpg|thumb|<center>[https://www.linkedin.com/in/tomgarrubba/ Tom Garrubba] is the Sr. Director & CISO at [https://www.santa-fe-group.com/shared-assessments/ Santa Fe Group/Shared Assessments]</center>]] Tom Garrubba, Senior Director/CISO at Shared Assessments, is an internationally recognized thought leader, lecturer, and blogger on third party risk, and is the head instructor for their Certified Third Party Risk Professional (CTPRP) program. An active writer and blogger on business IT risk, he has provided insight and commentary for various industry websites including the Huffington Post, Future of Outsourcing Magazine, Corporate Compliance Insights, Brilliance Security Magazine, Risk.net, Government Health IT, and ISACA, and authored the chapter on Third Party Risk for the Risk.net book “Cyber Risk”. Previously, Tom was Senior Privacy Manager at a Fortune 10 US-based Healthcare company where he implemented and managed a world-class third party risk program. He has over 20 years of experience in IT security, privacy, audit, and compliance in industry and public consulting.
*[https://www.ciodive.com/news/new-breed-of-security-vendor-spells-trouble-for-pure-play-firms/557182/ New breed of security vendor spells trouble for pure play firms]
*[https://www.ciodive.com/news/fear-uncertainty-and-doubt-in-the-security-labor-market/557071/ 'Fear, uncertainty and doubt' in the security labor market]