Our dependence on outsourced services requires evaluation of third parties to ensure proper protection of sensitive data against cyber threats and breaches. Today’s risk evaluation process is inefficient and costly for all involved, driving a need for new competencies. Is it time to test new ideas, including peer collaboration, to perform assessments on third parties with common shared services?