Digital Marketing Plan & Content: U.K. & Ireland

Digital Marketing Plan & Content: U.K. & Ireland for Third Party Risk Institute Ltd. & Certified Third Party Risk Management Professional (C3PRMP) program Project Scope: To develop a plan for an effective low cost digital marketing strategy, content and budget to support The Institute’s goals to acquire members in Third Party Risk Institute Ltd. and students in its Certified Third Party Risk Management Professional (C3PRMP) program. The target market for this project is UK & Ireland Background Information : Third Party Risk Institute Ltd. had a “soft launch” in mid-July 2020. The Institute aspires to be recognized as the world’s most reliable source for third party risk management (3PRM): · Training and education · Recognized professional designation(s) · Best practices, frameworks, tools, templates, and risk insight · Professional networking About Membership in Third Party Risk Institute Ltd.: Third Party Risk Institute is a member-centric organization. Our Members lead positive change in third party risk management, seeking to improve and standardize practices globally and drive enterprise value within their own organization. The Value Proposition: Benefits of membership: · Access to insight, information and thought leadership about best and emerging practices · Membership in a peer network of experts, peers, partners, and sponsors locally, regionally, nationally and around the world · Learn how to lead change and drive enterprise value · Access to members-only resources · Member pricing on training, education and certification programs About C3PRMP: As a Certified Third Party Risk Management Professional (C3PRMP) graduates will enjoy the confidence of a strong working knowledge in: • Actionable best and emerging practices in third party risk management • Aligning tools and processes with Enterprise and Operational risk management • Time-honored risk frameworks (COBIT, ISO, NIST, etc.) that power effective third party risk management • “High water mark” risk domains and drivers; risk identification, evaluation and ratings; effective controls and monitoring • Enabling effective governance and oversight with KRIs, KPI’s and board reporting About Linda Tuck Chapman: Linda is recognized as one of the world’s leading expert in third-party risk management and developed the C3PRMP course for SIG University. As one of the first Chief Procurement Officers in the financial services sector, Linda helped found today’s practices for strategic sourcing and high-impact third party risk management. Her consulting business is built on her experiences as a corporate executive, where her capabilities grew far beyond managing supplier spend. She uncovered new sources of revenue, identified lucrative third party equity deals, and implemented sound risk mitigation strategies. Today Linda leads Ontala Performance Solutions Ltd. As a trusted advisor, insightful educator, and published author, Linda helps companies evaluate and strengthen their third party risk management practices, protecting customers, shareholders, and board members. Linda’s acclaimed book “Third Party Risk Management: Driving Enterprise Value” is the foundation for the “Certified Third Party Risk Management Professional (C3PRMP)” program. It is published by RMA, a 114-year-old Not for Profit with a mandate to improve risk management practices in the financial services sector. In 2020, she incorporated Third Party Risk Institute, a web-based organization offering C3PRMP powered by SIG University. About SIG and SIG University: SIG University, a wholly owned subsidiary of Sourcing Industry Group (SIG), SIG is a global member-driven organization with membership drawn from N.A. Fortune 1000 and Global 200 companies through sharing of innovative technologies, emerging and best practices, and professional experiences, expertise and learning

Digital Marketing Plan & Content: North America

Digital Marketing Plan & Content: North America (Canada & U.S.) for Third Party Risk Institute Ltd. & Certified Third Party Risk Management Professional (C3PRMP) program Project Scope: To develop a plan for an effective low cost digital marketing strategy, content and budget to support The Institute’s goals to acquire members in Third Party Risk Institute Ltd. and students in its Certified Third Party Risk Management Professional (C3PRMP) program. The target market for this project is North America. Background Information : Third Party Risk Institute Ltd. had a “soft launch” in mid-July 2020. The Institute aspires to be recognized as the world’s most reliable source for third party risk management (3PRM): · Training and education · Recognized professional designation(s) · Best practices, frameworks, tools, templates, and risk insight · Professional networking About Membership in Third Party Risk Institute Ltd.: Third Party Risk Institute is a member-centric organization. Our Members lead positive change in third party risk management, seeking to improve and standardize practices globally and drive enterprise value within their own organization. The Value Proposition: Benefits of membership: · Access to insight, information and thought leadership about best and emerging practices · Membership in a peer network of experts, peers, partners, and sponsors locally, regionally, nationally and around the world · Learn how to lead change and drive enterprise value · Access to members-only resources · Member pricing on training, education and certification programs About C3PRMP: As a Certified Third Party Risk Management Professional (C3PRMP) graduates will enjoy the confidence of a strong working knowledge in: • Actionable best and emerging practices in third party risk management • Aligning tools and processes with Enterprise and Operational risk management • Time-honored risk frameworks (COBIT, ISO, NIST, etc.) that power effective third party risk management • “High water mark” risk domains and drivers; risk identification, evaluation and ratings; effective controls and monitoring • Enabling effective governance and oversight with KRIs, KPI’s and board reporting About Linda Tuck Chapman: Linda is recognized as one of the world’s leading expert in third-party risk management and developed the C3PRMP course for SIG University. As one of the first Chief Procurement Officers in the financial services sector, Linda helped found today’s practices for strategic sourcing and high-impact third party risk management. Her consulting business is built on her experiences as a corporate executive, where her capabilities grew far beyond managing supplier spend. She uncovered new sources of revenue, identified lucrative third party equity deals, and implemented sound risk mitigation strategies. Today Linda leads Ontala Performance Solutions Ltd. As a trusted advisor, insightful educator, and published author, Linda helps companies evaluate and strengthen their third party risk management practices, protecting customers, shareholders, and board members. Linda’s acclaimed book “Third Party Risk Management: Driving Enterprise Value” is the foundation for the “Certified Third Party Risk Management Professional (C3PRMP)” program. It is published by RMA, a 114-year-old Not for Profit with a mandate to improve risk management practices in the financial services sector. In 2020, she incorporated Third Party Risk Institute, a web-based organization offering C3PRMP powered by SIG University. About SIG and SIG University: SIG University, a wholly owned subsidiary of Sourcing Industry Group (SIG), SIG is a global member-driven organization with membership drawn from N.A. Fortune 1000 and Global 200 companies through sharing of innovative technologies, emerging and best practices, and professional experiences, expertise and learning.

Third Party Risk Institute: Strategic Plan, Implementation Recommendations and 3-year Roadmap

Project Description: Develop a 3 year Strategic Plan ; Year-1 Implementation Recommendations ; and 3 year high-level Roadmap for Third Party Risk Institute. Corporate Objective: To establish the Third Party Risk Institute (the Institute), a global virtual organization, as the “go to” resource for professional networking, training and education, adaptable frameworks, standards, and tools for third party risk management and third party risk management professionals. Third party risk management is a “programmatic” way for a company to identify, assess, manage and control operational risk resulting from its relationship with entities, excluding relationships as their customer. Third parties are not just vendors, they are all relationships including agents, resellers, channel partners, joint ventures, and the list goes on and on. Depending on the size of the company, the business they’re in, and the markets where they operate, they will have hundreds, thousands, or tens of thousands of third party relationships. There is no global network, single source or organization for professional networking, access to non-commercial information, tools, and resources for third party risk management practitioners to engage, learn and collaborate to advance the discipline and their career. Please see Resources for a more detailed Corporate Objective. Vision: A network of third party risk management professionals from “buy” and “sell” side organizations, government and extended public sector organizations that have a personal and professional desire to grow their expertise and capabilities, strengthen and evolve third party risk management frameworks, standards, tool, practices and effectiveness. Mission: 1. Deliver third party risk insight 2. Enable risk-informed decision making 3. Mitigate risk; comply with regulations and laws; improve performance; drive best value for money 4. Detect exposure to risks; respond effectively to risk events 5. Protect your reputation, stakeholders, and bottom line from preventable harm Please see Resources for High Level Goals of the Institute. Project Deliverables: 1. Validate the “value proposition” for membership 2. Define the motivation for becoming a member 3. Identify and evaluate competition (SWOT) 4. Assess market potential 5. Identify top 3 markets, industries and member profiles 6. Evaluate revenue potential for Fees and Revenues (see Ideas, #4) 7. Prioritize services and services that drive highest ROI in years 1 to 3 8. Estimated start up costs and work effort 9. Define critical success metrics 10. Create a high level Implementation Plan (e.g. website, services, etc.) 11. Develop a 3 year Roadmap Create a 3 Year low-cost Marketing Plan Please see the Resources for high level Ideas pertaining to the project and the Institute.

Third Party Risk Institute: Technology Strategy

Project Description: Research and recommend a technology strategy for Ontala Education Solutions Ltd., operating as Third Party Risk Institute. The technology strategy will integrate a new Third Party Risk Management website that is currently under development using WordPress. Vision Third Party Risk Institute (3PRI) inspires organizations and professionals to invest in world-class third party risk management, getting and staying on top of the complexities of an ever-changing threat landscape, protecting their customers, firm, and shareholders from harm. Our corporate and individual members are drawn from private and public sector organizations around the world. Corporation members benefit from confidentially sharing their best practices and experiences and from joint problem solving. Individual members are business leaders, professionals in risk, technology, legal, and procurement roles, vendor managers, management consultants, researchers, and auditors seeking to improve their expertise and capabilities. The Institute is recognized as the world’s most reliable source for third party risk management (3PRM): 1. Training, education and professional designation(s) 2. Information, frameworks, tools, templates, and best practices 3. Corporate and individual professional networking Third Party Risk Institute’s Technology Strategy must include: · a Learning Management System (LMS) for delivery of the online, video-based training · a website plug-in or other solution with the ability to accept registration and payments for training program · capability to build a landing page(s) to register students on SIG University’s website in Certified Third Party Risk Management Professional (C3PRMP) elearning program · capability to build landing page(s) linking 3PRI to other company’s websites in order to register students and take payments for C3PRMP and other training programs · the ability to resell training from other providers that will redirect participants via or via to a landing page for those providers · a website plug-in to automatically post publications and events on LinkedIn, Twitter, etc. · capability to register participants, host and broadcast podcasts and webinars · recommendations for “social networking” between paid members of 3PRI · capability to (automatically) invoice corporations for membership and/or training fees · ecommerce solution for invoicing and accepting direct payments from corporations and individuals for membership and/or training fees (PCI certified) · plug-in or solution to allow members-only access to resources behind the website’s “paywall” · capability to release specific tools and templates to members and non-members upon receipt of electronic payment · ability to apply “members-only” payment discounts to training and resources (tools, templates, frameworks) · capability to differentiate individual and corporate memberships · capability to enable log-in passwords, including admin rights (add, change, delete) · anything else we should know/consider Specific requirements for LMS: · Embedded content creation tools that support multiple formats such as videos, links and slides · Custom branding capabilities · Interactive user interface · Links to external sites (for supplemental reading) · Document storage capability – i.e., extra reading such as PDFs of white papers, blog articles, research papers, etc. · Capability to enable multiple choice exams, with minimum pass mark (e.g. 80%) and display or hide details of correct and incorrect responses · Capability to enable students’ access to discussion forum, messages and notifications · Simple Registration function that is self-administered by the student with minimal back-end administration · Synchronous and asynchronous learning capabilities · Store student results (quizzes and exams) for up to 5 years Deliverables: · Report with specific recommendations · Estimated costs: licensing, maintenance · Limitations (e.g. # of concurrent users) · Benefits/rationale (to support recommendations) · Risks · Competitive Analysis (top 2-3 solutions reviewed)