Emerging Third-Party Risk Trends Beyond the CISO Office

Chris Watson
Chris Watson EY
Adam Horowitz
Adam Horowitz EY
Marissa Carducci
Marissa Carducci AuditBoard

On-Demand Webinars

Webinar Speakers

Chris Watson is a Managing Director at EY with 17+ years of experience in risk management with a focus on third-party management, cybersecurity, and resiliency. Chris’ expertise includes building sustainable operations and product delivery from scratch to deliver third-party control validation and scaled risk management and technology control functions globally. Throughout his career he has developed functions that align, design, and deliver new products and integrated services as solutions. Chris is actively involved with sector enhancement efforts and regularly speaks as a representative of them on industry panels and forums.

Adam Horowitz is a Senior Manager in the Consulting practice of Ernst & Young LLP. He has experience working across the risk agenda, with a focus on third-party risk management (TPRM). He has supported several global initiatives and has spent the last three years maturing the firm’s Third-Party Risk as a Service (TPRaaS) managed service offering as the Product & Innovation Lead, focusing on leveraging platforms, data, and innovation. He assisted with a service transformation effort to deploy a managed service delivery model for third-party risk. He specializes in program build-out including target operating model, development of risk methodology, and enablement of the technology platform.

Marissa Carducci has over seven years of SOX and internal audit experience. Marissa began her career at The Kroger Co. before transitioning to an Advisory Manager role with Ernst & Young. Marissa has been with AuditBoard for three years where she’s assisted several internal audit teams through the evaluation process of acquiring technology solutions. Certified Public Accountant (CPA), Inactive.


Management and boards are pushing to do more with less and as a result are turning to third parties to stay competitive. This strategy, however, comes with risk. Third parties introduce a host of risks including cyber, privacy, resiliency, digital, brand, and regulatory. Leading organizations must be able to transform uncertainty into confidence by developing trust with third parties. To holistically manage third-party risks, it is critical to establish foundational components of a TPRM program and embed TPRM activities throughout the third-party management lifecycle. Learn how organizations are operationalizing their third-party risk programs leveraging a data-driven approach and emerging capabilities.

View Webinar Now