Manage episode 289856210 series 2910339
Third Party Risk Management is becoming a strategic priority for many organisations. Based on client research, most organisations tend to lean towards a decentralised approach to TPRM due to the size and complexity of an organisation and their pre-existing processes.
Having a variety of TPRM processes can become problematic if not managed holistically as the organisation may not have the high level perspective that is needed to be aware of all the risks that come with different third parties and the varying nature of the processes may lead to inefficiencies.
So, whilst third party ownership is an organisation-wide responsibility, organisational leadership should drive toward a shared framework and tools to enable the various risk management processes to share data and create efficiencies. This framework may be owned and overseen by risk management or procurement.
“By implementing a centralised Third Party Risk Management Framework, TPRM processes can be unified under an umbrella of excellence,” says Patrick Ryan.