What department typically owns the Third Party due diligence/assessment process?

Third Party Risk Management (TPRM)

Procurement14%

Operational Risk45%

Audit19%

Vendor Risk Management 10%

Cybersecurity10%

Legal2%

84 PARTICIPANTS

1.3k views

Content you might like

How are you managing Section 232 derivative data collection besides Microsoft Excel? Any tools out there to help expedite the process?

How long do you think Google and Apple should commit to issuing security updates for their mobile operating systems (software)?

3 years14%

5 years50%

10 years21%

15 years or more10%

Not sure3%

View Results

Certificates of Insurance (COI): Collecting from Suppliers for Risk Mitigation • Does your company collect COIs annually from your suppliers? • What criteria do you use to determine from which suppliers to collect COIs annually? Are there industry benchmarks for this?

What models are in place for risk partners based in Line 2? What are the jobs to be done? How do they operate? What does the structure/operating rythms look like?

Read More Comments

What is the top cybersecurity issue your organization is facing?

Data breaches due to remote work8%

Ransomware attacks49%

Lack of a corporate security plan22%

Missing security patches10%

Failure to inform employees of threats6%

Other (please specify)2%

View Results