Skip to content

Governance Domain

Third Party Governance

Vendor governance across the full lifecycle, with ownership assigned at every stage.

Part of Regulatory, Privacy & Third-Party

Overview

Third-party risk is usually assessed once, at onboarding, and rarely revisited. This covers the full lifecycle: risk segmentation by criticality, proportional assessment criteria, and monitoring that catches drift between contracted and actual practice.

Focus Areas

  • Vendor risk segmentation
  • Lifecycle ownership from onboarding to exit