Why Third-Party Risk Management is a Cross Organisational Responsibility

According to a report by Kaspersky, third-party incidents were the most costly enterprise data breaches in 2021. With examples like Solar Winds, log4j, and Acellion making headlines for high profile and devastating breaches, the increasing frequency in third-party data breaches, the need to implement a proper third-party risk management (TPRM) framework is critical.

Third-party risk can come from any vendor/partner/supplier regardless of their size, so any disruption or security breach will halt productivity and have financial, reputational - and sometimes even legal ramifications - that can last for years after the initial attack. 

Whilst almost every business in the world relies on third-parties to keep their organisation up and running, only about 52% of companies have third-party risk management programmes in place. These are often much less robust and not as established as other security functionalities within the business. Some of the major challenges we are currently witnessing to creating a strong framework is organisation buy-in; allocation of people and resource; and lack of organisational visibility of supply chain risk. 

Join Crossword Cybersecurity and Darkbeam third-party risk management experts for an hour-long webinar to learn how you overcome internal challenges and create a strong TPRM programme.

This webinar will cover:

• What is TPRM and how to get started building your framework (step 1: ownership) 
• Key challenges in managing TPRM
• Who are the key owners of the TPRM function (is it IT or Procurement?)
• Why TPRM is an organisational responsibility and how to get buy-in at board level
• What online tools are available to build and manage a TPRM