Since the ridiculous expansion in the 2023 guidance ("any business arrangement", which places Subway in scope for bringing lunch to a meeting), we (FDIC examined) have an ever-growing section in the TPRM policy & Standard governance documentation ...
This message was posted by a user wishing to remain anonymous As part of our TPRM process, vendors provide due diligence documentation that is typically designated as confidential and not to be shared externally. If we store this information ...
This message was posted by a user wishing to remain anonymous Recently we had an external auditor, write up a finding in regard to Escrow and Title companies Due Diligence. They said that because of Regulatory guidance from 2023, we should ...
Hi all – As a Vendor Management function led by a department of one, I'm working to better define roles and responsibilities as the program continues to mature. If anyone is open to sharing sample job descriptions for vendor management or ...
We define a Critical vendor as a vendor that provides services that are critical to the Bank or is a SOX vendor. Critical services may have a significant client impact that could cause material harm if the vendor fails to meet expectations ...
This Week's Power Users
Join a community dedicated to an area of third-party risk including contracts, infosec, risk assessments, policies, and more.
Gain TPRM knowledge fast. Read through these latest blog articles.
Meet, connect, and network with other users using the same third-party risk tool as you - get support and share new ideas and best practices.
Download the latest guides, infographics, samples, whitepapers, checklists, and more that can help guide you through best practices on third party risk. Visit Resources
Register and join live webinars to learn current trends and best practices from knowledgeable experts.Register Now