When organizations outsource critical functions like technology and security solutions, the question on everyone’s mind is: When does our liability for a data breach end, and my vendor’s begin? The answer is not really simple. In most industries, you can contract away a responsibility or task, but not the liability related to compromised data. If your organization was breached today, whose name is going to be in the news? Who are your customers going to call? Who is going to get fined and possibly sued as a result of the breach? The list of questions goes on. At the end of the day, your organization will suffer the negative publicity, the reputation damage, and financial loss of the attack, even if your vendor actually caused your incident. Then there is the other side of the equation – how do you know that your vendor can truly support your organization, perform the tasks you’ve contracted them for, or cover your losses if the breach is their fault?

Vendor risk management and due diligence is something every organization should perform carefully, and there are a number of unique issues when considering the inherent risks associated with outsourced services.

The benefits of outsourcing are attractive for many reasons, but you need to ask yourself: Can you stake your organization’s well-being and financial stability on a vendor? If you answered no, then join us to discover:

Seminar Fee Includes:
AM-PM Tea/Coffee
Seminar Material
USB with seminar presentation
Hard copy of presentation
Attendance Certificate
$100 Gift Cert for next seminar
  • Weighing vendor risk and classifying critical / high risk vendors
  • Imperative questions you need to ask your vendors
  • Documentation to gather when outsourcing your technology and/or security solutions
  • The troubles of relying too heavily on cyber insurance
  • The unique ongoing due diligence needs of outsourced technology and/or security solutions
  • Critical contract provisions

This course offers a unique opportunity for attendees to develop critical risk management skills to apply immediately upon returning to the office. This is a fast-paced, highly interactive workshop where attendees will develop a risk profile and risk management strategy using one of their own current or future vendors of choice.

In addition to course materials, attendees will receive a sample profile matrix, critical questions to ask your vendors, a sample checklist of minimum documentation requirements and valuable resources.

What to Bring: The speakers encourage you to bring a highlighter, pen, paper for additional notes, and your questions.

Dress Code: Casual. Be comfortable. You might want to bring a sweater if you tend to get cold easily.

Learning Objectives:

  • Record unique risks of vendors who support an organizations’ technology and/or security solutions
  • List the organization’s unique critical vendors
  • Develop a risk profile
  • Inventory appropriate risk management strategies
  • Assemble a plan for managing vendor risk

Areas Covered:

  • Weighing vendor risk and classifying critical / high risk vendors
  • Imperative questions you need to ask your vendors
  • Documentation to gather when outsourcing your technology and/or security solutions
  • The troubles of relying too heavily on cyber insurance
  • The unique ongoing due diligence needs of outsourced technology and/or security solutions
  • Critical contract provisions

Who will Benefit:

Any individual responsible for managing risk related to outsourcing technology, security, or other services / solutions. Includes, but not limited to:

  • Information Security
  • Information Technology
  • CPAs
  • Operations
  • Accounts Payable
  • Risk Management / Risk Managers
  • Business Continuity
  • Management
Register by phone or need assistance? Call +1-888-717-2436 Register Now Download Brochure
Day 01(8:30 AM - 4:30 PM)
  • Registration Process: 8:30 AM – 9:00 AM
  • 09:00 am – 09:30 am: Objectives; introductions; formally establish the agenda with attendee input
  • 09:30 am – 10:15 am: Vendor Risk
    • Types of risks presented by vendors
    • Liability
    • Identifying and profiling critical vendors
    • Critical vendor assessment
  • 10:15 am – 10:30 am: Break
  • 10:30 am – 11:45 am: Risk Management Strategies
    • RFPs
    • Initial and ongoing due diligence
    • Developing a risk profile
    • Questionnaires
    • Certification of Compliance
    • Evidence and documentation
    • Contracts and Service Level Agreements
  • 11:45 am – 12:45 pm: Lunch
  • 12:45 pm – 02:15 pm: Risk Management Strategies Cont’d
  • 02:15 pm – 02:30 pm: Break
  • 02:30 pm – 03:30 pm: Strategies Cont’d
  • 03:30 pm – 04:00 pm: Q&A and Wrap-up
Day 02(9:00 AM - 11:00 PM)
  • 09:00 am – 10:15 am: Risk Management Strategies Cont’d and Group Exercise
  • 10:15 am – 10:30 am: Break
  • 10:30 am – 11:00 am: Group Exercise Cont’d
  • 11:00 am - 11:30 am: Final Q&A, Wrap-up
Register by phone or need assistance? Call +1-888-717-2436 Register Now Download Brochure
Rayleen M Pirnie

Rayleen M Pirnie,
CEO, RP Payments Risk Consulting Services LLC

Rayleen is the founder and owner of RP Payments Risk Consulting Services, LLC. based in Missouri. She is a nationally recognized payments risk and fraud expert who offers specialized consulting services, procedural and risk management reviews, and payments education. Rayleen’s specialized skill is delving into the world beyond the payment rules; areas where organizations often find themselves in positions of liability or loss with little to no clear guidance. She is an Accredited ACH Professional (AAP) who has worked with all payment systems for nearly 20 years. Rayleen also holds a Bachelor’s of Science in Criminal Justice Administration.

Rayleen’s educational programs provide real-world, actionable information for financial institutions and businesses on topics ranging from payments risk management to information security. She authors payments risk and fraud blogs geared toward helping organizations recognize threats and protect themselves from loss.

Karen L Garrett

Karen L Garrett,
Partner, Stinson Leonard Street LLP

Karen L Garrett, a frequent speaker, is a partner at Stinson Leonard Street LLP and Co-Chair of Stinson’s Banking and Financial Services division, and Stinson's FinTech practice group. She advises financial services businesses on payments, third party risk management, regulatory and operations matters, product development, compliance, M&A and other legal issues. Karen represents financial companies in connection with licensing applications and enforcement orders. She has provided legal support for cash management services, electronic transfer transactions, online services, mobile banking, prepaid, debit and credit cards and alternative lending and payments products. Karen is a graduate of the Northwestern University School of Law.

Register by phone or need assistance? Call +1-888-717-2436 Register Now Download Brochure

Register Now

Online using Credit card


Seminar One Registration

November 13-14, 2017, Irvine, CA
(For Registrations till October 24, 2017 - $1199)
(For Registrations after October 24, 2017 - $1499)

$7,194.00 (22%)*

Save $1,595.00

Special Group Discount Register for Six attendees

November 13-14, 2017, Irvine, CA
*Hurry! This option is limited and based on availability.
Great Savings with Group Ticket!!! Only 3 left

Early bird seats are limited and based on first-come, first-serve.

Your registration fee includes the workshop, all course materials and lunch.

For discounts on multiple registrations, contact customer care at +1-888-717-2436.

Other Registration Option

By order form / PO#

Payment Mode

By Check -
Pay your check to (payee name) “MetricStream Inc” our parent company and Mail the check to:

ComplianceOnline (MetricStream, Inc),
2479 East Bayshore Road Suite 260
Palo Alto, CA 94303

By Wire -

Register / Pay by Wire Transfer

Please contact us at +1-888-717-2436 to get details of wire transfer option.

Terms & Conditions to Register for the Seminar/Conference/Event

Your registration for the seminar is subject to following terms and conditions. If you need any clarification before registering for this seminar please call us @ +1-888-717-2436 or email us @

Payment is required 2 days before the date of the conference. We accept American Express, Visa and MasterCard. Make checks payable to MetricStream Inc. (our parent company).

Cancellations and substitutions:
Written cancellations through fax or email (from the person who has registered for this conference) received at least 10 calendar days prior to the start date of the event will receive a refund - less a $300 administration fee. No cancellations will be accepted - nor refunds issued - within 10 calendar days before the start date of the event.

On request by email or fax (before the seminar) a credit for the amount paid minus administration fees ($300) will be transferred to any future ComplianceOnline event and a credit note will be issued.

Substitutions may be made at any time. No-shows will be charged the full amount.

We discourage onsite registrations, however if you wish to register onsite, payment to happen through credit card immediately or check to be submitted onsite. Conference material will be given on the spot if it is available after distributing to other attendees. In case it is not available, we will send the material after the conference is over.

In the event ComplianceOnline cancels the seminar, ComplianceOnline is not responsible for any airfare, hotel, other costs or losses incurred by registrants. Some topics and speakers may be subject to change without notice.

Attendance confirmation and documents to carry to the seminar venue:
After we receive the payment from the registered attendee, an electronic event pass will be sent to the email address associated with the registrant 5 working days before the seminar date. Please bring the pass to the venue of the event.

Conference photograph / video:
By registering and attending ComplianceOnline conference, you agree to have your photographs or videos taken at the conference venue and you do not have any objections to ComplianceOnline using these photos and videos for marketing, archiving or any other conference related activities. You agree to release ComplianceOnline from any kind of claims arising out of copyright or privacy violations.


Hilton Irvine/Orange County Airport
18800 MacArthur Blvd,
Irvine, CA 92612, USA
Tel: +1-949-833-9999

November 13-14, 2017

How to Reach

General Driving Directions:

Driving directions from John Wayne Airport/Orange County - 0.25 miles:
  • Depart ramp toward Self-Parking/Valet / Departures
  • Keep right onto road
  • Keep left toward Airport Way
  • Keep straight onto Airport Way
  • Turn right onto MacArthur Blvd
  • Turn left onto Douglas
  • Turn left onto road
  • Turn right onto road
  • Hotel is on the right
Driving directions from Long Beach Airport – 21 miles:
  • Freeway 405 South, continue for 25 miles
  • Exit on MacArthur Blvd
  • Turn left on MacArthur
  • Hotel is 2 lights down on left side at corner of MacArthur and Douglas

Disclaimer: Directions to the venue above have been taken from the hotel website. Attendees are advised to check with the hotel for confirmation of these directions before starting for the venue. ComplianceOnline is not responsible for any inaccuracies in the same.

Register by phone or need assistance? Call +1-888-717-2436 Register Now Download Brochure

We are pleased to offer several exhibitor, sponsorship and media partnership options designed to maximize your company's exposure and networking opportunities before, during and after the event.

Benefits of becoming a Sponsor/Exhibitor/Media Partner:

  • Logo on website, marketing email, branding materials & the registration booth
  • Exhibit Space
  • Free event pass
  • Speaking opportunity
  • Social media campaign

For more details and other sponsorship options at this event, please contact Event Manager: or call: +1-650-238-9656

Media Partner:

Media Partner

Register by phone or need assistance? Call +1-888-717-2436 Register Now Download Brochure

Local Attractions of Irvine, CA

The Irvine Museum

The Irvine Museum

The Irvine Museum collects and preserves California Art, with an emphasis on landscapes and Impressionist work. The Museum itself is a lovely hacienda style building, reminiscent of the Golden Land's early days.

Tanaka Farms

Tanaka Farms

Located in the heart of sunny Irvine, Tanaka farms provides fun, educational activities for kids and families. Seasonal tours of the Pumpkin Patch and Strawberry Fields, plus elaborate cook-outs and entertainment are among the delights offered at Tanaka farms.

Pretend City Children's Museum

Pretend City Children's Museum

Pretend City Children's Museum is a very promising place to bring children.

Orange County Great Park

Orange County Great Park

The Orange County Great Park is a vital center that brings together some of the southern California's exciting, diverse communities with educational workshops, farmer's markets, concerts and exhibits. The Park is currently expanding and will soon have an elaborate sports field as well.

Disneyland />
	<p class=Disneyland

One of the largest and most popular Orange County attractions is just a short trip away. See Mickey, Minnie, Peter Pan, Winnie the Pooh, Alice in Wonderland and many of the world's most beloved characters and rides during a visit to the Magic Kingdom.

Register by phone or need assistance? Call +1-888-717-2436 Register Now Download Brochure

We need below information to serve you better

Best Sellers
You Recently Viewed