About a-team Marketing Services
The knowledge platform for the financial technology industry
The knowledge platform for the financial technology industry

A-Team Insight Blogs

Cloud Industry Forum Joins Third Party Assurance Initiative

Subscribe to our newsletter

The Cloud Industry Forum (CIF) today announced it has partnered with the Third Party Assurance Centre (TPAC), a business assurance initiative, formed to help minimise outsourcing risks. Other industry bodies partnering with TPAC include the Information Security Forum, Cloud Security Alliance, Common Assurance Maturity Model, and the Payment Card Industry board of advisers.

A recent whitepaper collectively produced by these industry bodies entitled, “Business Assurance for the 21st Century,” highlights that third parties managing data should be asked questions about the security systems they have in place and the standards they adhere to. TPAC aims to combat security risks faced by organisations that manage third-party suppliers by introducing transparency into the supply chain.

Raj Samani, founder of the Common Assurance Maturity Model (CAMM), and chief technology officer Europe, Middle East and Africa for security firm McAfee, commented: “Organisations should create contracts which outline the level of security that they expect from their third parties, whether data is being managed in the cloud or on-premise. This way, when organisations get tenders for business coming through, they are assured that third parties are transparent about risk levels. Transparency is heavily encouraged by CIF as are contracts. We are delighted they are coming on board with TPAC to advocate best practice across the wider IT sector.”

Andy Burton, chairman of the Cloud Industry Forum commented: “CIF fully supports the initiative of providing a third party assurance framework to help establish trust online, and we see this as complementary to the CIF Code of Practice which was launched in 2010 to engender best practice within the Cloud Service Provider market by requiring Certification against the inter-dependent pillars of Transparency, Accountability and Capability. Both the CIF Code of Practice and the Third Party Assurance initiative have a common aim of providing end users with a frame of reference to make informed decisions in their use of online services. To that end we are keen to work alongside our industry peers to see if we can help make this a reality.”

A website will shortly be launched for the initiative under the following url: www.the-third-party-assurance-centre.com.

Subscribe to our newsletter

Related content

WEBINAR

Recorded Webinar: ESG data sourcing and management to meet your ESG strategy, objectives and timeline

ESG data plays a key role in research, fund product development, fund selection, asset selection, performance tracking, and client and regulatory reporting, yet it is not always easy to source and manage in a complete, transparent and timely manner. This webinar will review the state-of-play on ESG data, consider the challenges of sourcing and managing...

BLOG

LSEG-D&B Collaboration Underscores Demand for Private Market Data

The London Stock Exchange Group (LSEG) has joined a growing list of major vendors and institutions that have launched data products to help asset managers better assess private markets. London-based LSEG has collaborated with private-market specialist Dun & Bradstreet to help its users better identify opportunities and risks within the alternatives space. The partnership comes...

EVENT

TradingTech Summit London

Now in its 14th year the TradingTech Summit London brings together the European trading technology capital markets industry and examines the latest changes and innovations in trading technology and explores how technology is being deployed to create an edge in sell side and buy side capital markets financial institutions.

GUIDE

The Reference Data Utility Handbook

The potential of a reference data utility model has been discussed for many years, and while early implementations failed to gain traction, the model has now come of age as financial institutions look for new data management models that can solve the challenges of operational cost reduction, improved data quality and regulatory compliance. The multi-tenanted...