Build Modern Third-Party Risk Management That Actually Reduce Risk

Build Modern Third-Party Risk Management That Actually Reduce Risk

The growing reliance on a complex network of vendors, platforms, AI systems and supply chains is forcing teams to reassess third-party risk management (TPRM) programs. Realizing your org is only as secure as your least secure partner - or partners’ partners - leaves teams struggling to address the root risks effectively. In this symposium, we discuss how broader risks, such as those in AI and OT environments, complicate traditional approaches and why outdated methods, including questionnaires, fail to provide the necessary insight. We then share practical, actionable strategies to build and scale your TPRM program to more fully understand risk, and accept or mitigate it, while still enabling the business.

• Clarify purpose and importance of TPRM: protect assets by managing access granted to external parties, especially outsourced IT providers
• Highlight risks in underlying assets exposed through third-, fourth-, and Nth-party access
• Discuss failures in the overlaps and boundaries between TPRM, supply chain security, and enterprise risk management
• Walk through practical examples in AI and OT that exemplify the severe consequences of lacking supply chain visibility
• Discuss the characteristics of effective governance, ownership and benefits of a centralized program
• Examine the strengths and limitations of current tools and approaches and pitfalls to avoid

Audience

This event is for IANS clients and invited guests — there is no vendor sponsorship or presence.