Risk-Based Vendor Due Diligence: Identifying the Proper Scope, Scale, and Documents
To effectively manage third-party risks, it’s recommended to perform risk-based due diligence that is customized to each product or service, their level of risk, and their criticality to your organization’s operations. It's not practical or productive to have a universal due diligence requirement for all vendors as every vendor's product or service represents a unique level of risk to your organization.
What does risk-based vendor due diligence look like? What documents are necessary to verify vendor risk management practices and controls?
Join us for this session to learn how to identify the right scope and scale for vendor due diligence, what documents to collect, tips for dealing with missing documentation, and what to do with your due diligence results.
Register now to learn:
- An overview of what vendor due diligence is
- Baseline vendor due diligence to collect
- Sample due diligence items to collect for low, moderate, and high-risk vendors
- What to do when you can't get what you need from your vendor
- How to determine if you need additional vendor due diligence
- Key takeaways