Skip to Main Content

Bruin Learn access is restored. UCLA Digital and Technology Solutions and Bruin Learn administrators are continuing to monitor for delays or unexpected issues with the restoration of UCLA’s Canvas environment. If you continue to experience any issues with Bruin Learn, please reach out to BruinLearn-Support@it.ucla.edu

Third Party Risk Management (TPRM)

As part of UCLA’s ongoing effort to effectively manage third-party risks and ensure compliance with regulatory requirements, it is essential that we understand and manage the risks that third-party relationships may pose to the University. UCLA’s Departments/Units broadly engage with third parties to achieve various educational goals. In most cases, these third-party services/products present risks that may adversely impact UCLA.

Pricing

This service is provided at no cost to campus.

Benefits

  • The UCLA Third-Party Risk Assessment (TPRM) is used to evaluate third-party information security program and practices as well as to determine if any risks exist and if any compensating controls may be required.
  • The assessment  identifies gaps in a third party’s ability to comply with the University’s security requirements during the pre-contract phase.
  • Risk domains include application/service security, business continuity, security policies and procedures, etc.

Key Features

  • Uses a risk-based approach to apply more scrutiny on high risk third parties
  • Enables understanding of residual risk posed by third-parties
  • Provides enhanced risk coverage across a broader set of risk domains, including cloud security, compliance, human resources (HR) security, etc. 
  • Assists with compliance efforts in alignment with University policy and applicable laws

Eligibility

All Campus Units are provided this service.

Requirements

None

Getting Started

Contact grc@ucla.edu to learn more.