Third-party risk management is a complex process that involves many rules, requirements, and processes, all of which must be formalized and documented in governance documents. These typically include your formal policy, program document, and procedures. This eBook will explain what each document is intended to accomplish, what content it should contain, for whom it’s intended, as well as helpful tips.