When:    June 4th | 2025      Attend

As cloud adoption accelerates, managing vendor risks is more crucial than ever. Join our panel discussion webinar with Paul McKay, Principal Analyst at Forrester, and subject matter experts as we explore strategies for overseeing vendor relationships in the cloud. This session will provide practical guidance and exclusive research to strengthen your approach.

Attendees will earn CPE credit and can engage directly with the panel by submitting questions, participating in interactive polls, and accessing cutting-edge insights.

Learning Objectives:
• Identify Critical Risks – Recognize key vendor risks in cloud environments and their impact on security and compliance.
• Enhance Oversight Strategies – Discover best practices for monitoring and managing vendor performance in the cloud.
• Understand the Internal Audit Role – Explore how internal audit can assess and strengthen vendor risk management.
• Gain Expert Insights & Practical Solutions – Learn from Forrester’s Paul McKay and other experts while applying actionable steps to improve vendor accountability and resilience

Moderator

Colin Whittaker, PCI Industry Alumni, Founder and Director Informed Risk Decisions Ltd. Colin has been instrumental in driving forward a risk and security strategy for payments over the last 15 years since he retired from the military in 2001, and took up the role of Head of Security at APACS. Whilst there he was one of the first people to be elected to the PCI SSC Board of Advisors where he was always keen to try and promote the differences in threat between Europe and UK, and the US. He was also responsible for coordinating Visa Europe's approach to cardholder data breaches in Europe, and for the changes to the Visa Europe Compliance strategy through the creation of the Technology Innovation Programme which gave the very first PCI DSS compliance relief for EMV chip accepting merchants. In 2015 he went independent and currently provides cyber security risk consultancy services to a wide range of public and private companies. Colin has presented on Information Security at major events around the world, and has published a number of papers on security.

Meghan Maneval is a distinguished figure in the cybersecurity and governance, risk management, and compliance (GRC) sectors, renowned for her innovative approach and commitment to enhancing diversity in the tech industry. With nearly 20 years of experience, she has consistently demonstrated her ability to simplify the complexities of risk for organizations around the world. Maneval leverages her unique insights to drive significant advancements in GRC processes and best practices. She's been directly involved in the development of GRC solutions, advocating for risk-centric strategies that adapt to the evolving landscape of cybersecurity. Her pioneering work in AI governance, including the design of a continuous monitoring process and the development of AI Governance curricula, showcases her dedication to responsible and secure AI usage.

Paul McKay, VP and principal analyst supporting Forrester’s global security and risk research service. Paul leads coverage in risk management, focused on governance, risk, and compliance (GRC) service providers, managed service providers, and cyber risk ratings providers. Paul also supports other risk topics including security risk management/policy development and GRC vendors. He is also developing new research streams focused on regulatory technology and covering sustainability regulations. Paul previously held the role of European technology research director in Forrester’s Europe research group; prior to that, he was a security analyst focused on European security services providers and cyber risk management topics. Paul is frequently asked to comment on technology issues by press and trade publications. He has recently been quoted in publications such as the Wall Street Journal, Financial Times, Fortune, CIO Magazine, CSO Magazine, ZDNet, SC Magazine, Handelsblatt, City A.M., and Infosecurity Magazine.

Paul Valente is the CEO and co-founder of VISO TRUST, the AI-powered third-party risk management (TPRM) platform trusted by some of the world’s most security-conscious organizations, including leading financial institutions, technology giants, and Fortune 1000 enterprises. With over 25 years of cybersecurity and risk leadership experience, Paul has served as CISO at Restoration Hardware, LendingClub, and ASAPP, where he built and scaled security programs at high-growth companies navigating complex regulatory environments. Paul regularly speaks at industry events, engages with CISOs worldwide, and shares insights on the pragmatic realities of TPRM in today’s digital landscape.

Adam Bixler, Chief Product Officer as SecurityScorecard. Adam is a two-time successful tech entrepreneur specializing in cybersecurity startups. He excels at transforming early-stage ideas into scalable products and businesses for enterprise customers. With experience in enterprise product management and security consulting for both commercial and government clients, Adam also served as a Cyberspace Operations Officer in the US Air Force, shaping his strategic approach to tech innovation. His expertise spans network design, data center management, security analysis, compliance, incident response, and policy development. A results-driven leader, Adam is known for executing growth projects and delivering impactful results in the cybersecurity and tech industries.