Security News > 2020 > March > How organizations can maintain a third-party risk management program from day one
In this podcast recorded at RSA Conference 2020, Sean Cronin, CEO of ProcessUnity, talks about the importance of third-party risk management and how companies can get started with a proven process that works.
Our flagship product is a vendor risk management product that really focuses on third-party risk and vendor management.
Then as we expand that footprint, we also help folks in other risk pillars, things outside of third-party risks like policies and procedures, contract management.
A lot of people used to tell me from a governance, risk and compliance perspective: "I'd like to get through my examination. That's not good enough. Tell me what you want to understand." And some of my CISOs, CIOs, chief procurement officers say: "We'd like to have a geographical representation of our vendor population. Let's look at what the geographical concentration looks like. Let's look at the vendor inventory. Do we have overlap? Do we have too many vendors in one particular area or third parties in one particular area, where we could unify with the best practices?".
Then really look at the folks that you're trying to work with and the depth in which they understand the vendor risk management and third-party risk management area.
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/vv1PA-1jX58/