We use first a materiality assessment of 7 questions that include- Will this vendor access borrower or employee confidential data? Will this vendor have major impact on our ability to operate our business? Are there significant internal resources ...
We championed for a procurement team, and we added a vendor request form to our IT ticketing application that routes to TPRM, Procurement, FP&A, legal and IT. The form allows for selection of the following categories: Discovery (NDA only), Prospective, ...
Good morning! We use both a matrix and a questionnaire. The risk impact matrix we have created derives from our risk appetite which informs our questionnaire. Within our system, the questionnaire will deliver us a result based on the answers ...
This message was posted by a user wishing to remain anonymous At what point do you conduct insurance compliance/insurance verification, and how/by whom is it done?
This message was posted by a user wishing to remain anonymous For our process, it depends on what the issue is. For instance, if there were financial issues, we would ask for updated financials sooner than usual/ normal. Depending on the ...
This Week's Power Users
Join a community dedicated to an area of third-party risk including contracts, infosec, risk assessments, policies, and more.
Gain TPRM knowledge fast. Read through these latest blog articles.
Meet, connect, and network with other users using the same third-party risk tool as you - get support and share new ideas and best practices.
Download the latest guides, infographics, samples, whitepapers, checklists, and more that can help guide you through best practices on third party risk. Visit Resources
Register and join live webinars to learn current trends and best practices from knowledgeable experts.Register Now