Global Regulatory Outlook for Cybersecurity
Join our experts for a global update on key cybersecurity regulations, including SEC’s Regulation S-P amendments, EU’s DORA, AI Act, and more.
Third-party risk management (TPRM) is the process of monitoring, validating, and remediating risks presented by third-party vendors. TPRM helps ensure your vendors protect your data, comply with regulations, and provide sustainable services that meet your requirements. However, vendor risk management can be a costly and time-consuming task. Our vendor management outsourcing service (VMOS) allows your company to offload the vendor due diligence and risk assessment process. Unlike other vendor risk management solutions and vendor management software providers, ACA's VMOS will help your company save valuable time and resources in order to focus on more strategic tasks.
Our vendor management software allows you to track DDQ progress and vendor risk assessment results. Key features include:
Our vendor risk assessments are developed and managed by a team of information security risk analysts in ACA’s centralized, cost-effective analysis and review center (the ARC) in Pittsburgh, PA. The ARC’s dedicated vendor management outsourcing service team is overseen by an experienced vendor risk specialist and includes former senior managers in risk management, insider threat specialists, and data security officers from various industries, including financial services, banking, and healthcare. Over 750 clients and 2,000 vendors have chosen ACA to manage their vendor management process and mitigate third party risks.
Our tailored, proprietary vendor due diligence questionnaires (DDQ) include over 300 questions and are customized for each vendor type to provide an accurate assessment of possible risks. Topics include:
The new requirements become effective December 31, 2025. We’ve created a template timeline to guide your firm towards full compliance by the end of the year.
Five ACA Group Leaders Recognized Among the 2&20 Top 100 Most Influential People in the Service Provision for Alternative Investment Firms
Firms in the EU are facing stricter AML and CTF regulations driven by the 6AMLD and 7AMLD and the evolving approach to sanctions compliance.
The FCA recently conducted a review of private market valuation practices in response to concerns about rising interest rates and changes in market conditions for private assets.
The Department of the Treasury announced that it had suspended enforcement of the Corporate Transparency Act with respect to U.S. companies and U.S. citizens.
The GRC evolution: how outsourcing addresses talent, operational, and regulatory gaps
Five ACA Group Leaders Recognized Among the 2&20 Top 100 Most Influential People in the Service Provision for Alternative Investment Firms
ACA Group Recognized as RegTech100 Company for Fifth Consecutive Year
ACA Group introduces advanced features to its ACA Vantage for ESG platform, leveraging AI to help clients verify ESG data and streamline data management processes. This innovative solution empowers organizations to efficiently manage ESG requirements with greater accuracy and ease.
Join our experts for a global update on key cybersecurity regulations, including SEC’s Regulation S-P amendments, EU’s DORA, AI Act, and more.
Join us in sunny Orlando, Florida for ACA's 2025 Conference, "Preparing Today, Protecting Tomorrow," where industry leaders and experts will converge to explore the evolving landscape of financial services.