This message was posted by a user wishing to remain anonymous Here is a generic overview of our TPRM processes- new vendors, ongoing DD reviews, adding new services, contract expiration/renewal. Onboarding New Vendors : ...
This message was posted by a user wishing to remain anonymous Some background: Our VM process is immature. VM (me) is in the Legal department. We do not have a vendor approval process. We do not have a procurement process. We have guidelines ...
Hello Hannah, Great tip! We typically do quarterly board reports to senior management, and I have found that leading with an executive summary, keeping slides as minimal as possible to keep folks engaged, and letting the data tell ...
Board Reports Shouldn't Be a Mystery Novel-Lead with the Executive Summary Here's a scenario we've all lived: You've spent hours compiling vendor data, creating charts, and building the perfect board report. You present 30 slides of detailed ...
Nicole, The merger, rebrand, acquisition depends on how and who owns the controls for the due diligence. Rebranding is generally a simple name change, nothing in the underlying control framework changes. Therefore, updates to your database ...
This Week's Power Users
Join a community dedicated to an area of third-party risk including contracts, infosec, risk assessments, policies, and more.
Gain TPRM knowledge fast. Read through these latest blog articles.
Meet, connect, and network with other users using the same third-party risk tool as you - get support and share new ideas and best practices.
Download the latest guides, infographics, samples, whitepapers, checklists, and more that can help guide you through best practices on third party risk. Visit Resources
Register and join live webinars to learn current trends and best practices from knowledgeable experts.Register Now