TPRM due diligence best practices: No one-size-fits-all approach
By 
Adrianne Appel2022-12-14T17:30:00
Companies can’t do it all in terms of managing every risk from every possible third party, panelists discussed during a session on due diligence at Compliance Week’s virtual Third-Party Risk Management (TPRM) and Oversight Summit.
To begin, businesses must define their vision and strategy, said Samira Duijnmayer, compliance manager and regulatory and financial crimes officer at Booking.com.
“Decide what’s your north star and work toward it,” Duijnmayer said. For example, if you want to mitigate bad financial outcomes, make sure to do what’s needed in the risk process to achieve that goal, she said.
THIS IS MEMBERS-ONLY CONTENT
You are not logged in and do not have access to members-only content.
If you are already a registered user or a member, SIGN IN now.
Related articles
-
PremiumSurvey: Cybersecurity, regulatory risks lead TPRM priorities in 2023
Respondents to a survey from Compliance Week and Dun & Bradstreet overwhelmingly indicated cybersecurity to be the most important compliance-related area affecting third-party risk management in the new year, though fraud and other risks should still be on their radar.
-
PremiumTPRM panel: Underscoring need for first line of defense to own risk
Panelists discussing risk ownership at CW’s virtual TPRM and Oversight Summit share their experiences educating first-line leaders on their roles and responsibilities in the TPRM process.
-
PremiumTPRM Summit: How to successfully implement data analytics
A panel of experts at CW’s virtual TPRM and Oversight Summit offered a how-to primer on using data analytics to monitor third-party risk while also highlighting some caveats to implementation.
More from Risk Management
-
PremiumOil and gas executives mull the real costs of Venezuelan oil
U.S. oil and gas companies strong-armed into participating in the nationalization of Venezuela’s oil industry decades ago now face government pressure of the opposite kind: Invest billions into rebuilding a dilapidated oil and gas infrastructure for a high-risk country that still owes billions in unsettled debts.
-
ArticleCompliance must prepare for post-quantum cryptography requirements in contracts
While companies focus on the risks, opportunities, and regulations emerging around AI, the next tech challenge is already on the horizon. Quantum computers are here – and so are the associated crime risks, plus some encryption protections.
-
ArticleRapid regulatory change requires investment in compliance processes in financial services firms
Geopolitical instability and a general focus on increasing growth and productivity by governments worldwide are causing a slew of regulatory changes in the financial services sector. But most firms are failing to identify potential compliance changes early enough to make meaningful decisions.