This message was posted by a user wishing to remain anonymous
Hi
We are a FS firm that operates in multiple regulated jurisdictions, each with their own, albeit similar Outsourcing regulations.
How do others approach the classification and risk assessment of third party vendors or Outsourcing providers?
Do you have one all encompassing form that cover the core assessment criteria in each regime, or bespoke forms for a region of country?
Do you use the same form for the UK and Germany ?
Many thanks