Abstract
Leave a comment or question for the poster presenter below their abstract.
The OneTrust SaaS solution is our platform for providing third-party vendor risk assessments along with our internal risk assessments. This solution is an evolution of the RECON risk assessment process to the cloud with many other benefits such as, a smoother and faster workflow for RECON, External 3rd party risk assessment, and possibly other assessment processes.
"We have procured a best-in-class tool from OneTrust that allows IA to manage third-party and on premise risk assessments. It provides improved workflow for compliance partners and U-M procurement and makes it easier for units to view the risks associated with RECONs in their area," explained Dennis Neil, IT Security Design and Engineering Manager.
Current assessment processes are still overly manual, and involve exchanging email, documents, and questionnaires between IA staff and our unit partners, and making tracking of many pieces of information, in many places a challenge. With OneTrust, IA staff and unit partners can send and receive information, respond to questions, mark tasks complete, all while keeping the information about an assessment in a single place. The system is also capable of automatically notifying those involved in an assessment of status changes, new steps to be taken, or responses to questions, eliminating a lot of manual messaging.
"We're evolving away from home-grown tools and technology," said Sol Bermann, Executive Director of Information Assurance and Chief Information Security Officer. "OneTrust promises to let IA and its partners spend less time managing the process of assessments in a more efficient and speedy manner," he added.