Search
00
GBAF Logo
trophy
Top StoriesInterviewsBusinessFinanceBankingTechnologyInvestingTradingVideosAwardsMagazinesHeadlinesTrends

Subscribe to our newsletter

Get the latest news and updates from our team.

Global Banking & Finance Review®

Global Banking & Finance Review® - Subscribe to our newsletter

Company

    GBAF Logo
    • About Us
    • Advertising and Sponsorship
    • Profile & Readership
    • Contact Us
    • Latest News
    • Privacy & Cookies Policies
    • Terms of Use
    • Advertising Terms
    • Issue 81
    • Issue 80
    • Issue 79
    • Issue 78
    • Issue 77
    • Issue 76
    • Issue 75
    • Issue 74
    • Issue 73
    • Issue 72
    • Issue 71
    • Issue 70
    • View All
    • About the Awards
    • Awards Timetable
    • Awards Winners
    • Submit Nominations
    • Testimonials
    • Media Room
    • FAQ
    • Asset Management Awards
    • Brand of the Year Awards
    • Business Awards
    • Cash Management Banking Awards
    • Banking Technology Awards
    • CEO Awards
    • Customer Service Awards
    • CSR Awards
    • Deal of the Year Awards
    • Corporate Governance Awards
    • Corporate Banking Awards
    • Digital Transformation Awards
    • Fintech Awards
    • Education & Training Awards
    • ESG & Sustainability Awards
    • ESG Awards
    • Forex Banking Awards
    • Innovation Awards
    • Insurance & Takaful Awards
    • Investment Banking Awards
    • Investor Relations Awards
    • Leadership Awards
    • Islamic Banking Awards
    • Real Estate Awards
    • Project Finance Awards
    • Process & Product Awards
    • Telecommunication Awards
    • HR & Recruitment Awards
    • Trade Finance Awards
    • The Next 100 Global Awards
    • Wealth Management Awards
    • Travel Awards
    • Years of Excellence Awards
    • Publishing Principles
    • Ownership & Funding
    • Corrections Policy
    • Editorial Code of Ethics
    • Diversity & Inclusion Policy
    • Fact Checking Policy
    Original content: Global Banking and Finance Review - https://www.globalbankingandfinance.com

    A global financial intelligence and recognition platform delivering authoritative insights, data-driven analysis, and institutional benchmarking across Banking, Capital Markets, Investment, Technology, and Financial Infrastructure.

    Copyright © 2010-2026 - All Rights Reserved. | Sitemap | Tags

    Editorial & Advertiser disclosure

    Global Banking & Finance Review® is an online platform offering news, analysis, and opinion on the latest trends, developments, and innovations in the banking and finance industry worldwide. The platform covers a diverse range of topics, including banking, insurance, investment, wealth management, fintech, and regulatory issues. The website publishes news, press releases, opinion and advertorials on various financial organizations, products and services which are commissioned from various Companies, Organizations, PR agencies, Bloggers etc. These commissioned articles are commercial in nature. This is not to be considered as financial advice and should be considered only for information purposes. It does not reflect the views or opinion of our website and is not to be considered an endorsement or a recommendation. We cannot guarantee the accuracy or applicability of any information provided with respect to your individual or personal circumstances. Please seek Professional advice from a qualified professional before making any financial decisions. We link to various third-party websites, affiliate sales networks, and to our advertising partners websites. When you view or click on certain links available on our articles, our partners may compensate us for displaying the content to you or make a purchase or fill a form. This will not incur any additional charges to you. To make things simpler for you to identity or distinguish advertised or sponsored articles or links, you may consider all articles or links hosted on our site as a commercial article placement. We will not be responsible for any loss you may suffer as a result of any omission or inaccuracy on the website.

    1. Home
    2. >Business
    3. >How to prevent, detect, and respond to third-party risks and disruptions
    Business

    How to Prevent, Detect, and Respond to Third-Party Risks and Disruptions

    Published by linker 5

    Posted on November 18, 2020

    5 min read

    Last updated: January 21, 2026

    Add as preferred source on Google
    An informative graphic showcasing third-party risk management strategies, highlighting the importance of governance, risk, and compliance in business continuity amid disruptions.
    Graphic illustrating third-party risk management strategies - Global Banking & Finance Review
    Why waste money on news and opinion when you can access them for free?

    Take advantage of our newsletter subscription and stay informed on the go!

    Subscribe

    By Marco Icardi, President, Europe, MetricStream

    Organisations have become increasingly interconnected and third-party relations exist within almost every business. This interconnectedness has meant that even before the outbreak of COVID-19, there was a growing need for governance, risk, and compliance (GRC) teams to be resilient and better aware of the risks that are “unknown-unknowns”.

    As soon as the current health disaster struck however, the focus on the effectiveness of GRC teams was intensified even further. Many businesses found themselves in a position where they had to pause operations entirely due to a breakdown with suppliers or were exposed to a multitude of new cyberattacks following the move to remote working and a dispersed and isolated workforce.

    The impact of coronavirus has been severe and far-reaching and since there is no real end in sight, it is important that organisations take this time to delve into and analyse their third-party risk management process for the future.

    Lessons to be learned

    Over the years, many businesses have started to outsource more to third parties in various regions. When outsourcing to a third party, GRC teams will often assess the risks involved, including IT risks, corruption risks, operational risks, or business continuity risks. Without following this best practice, organisations could be exposed to multiple third-party data breaches, supplier failures, and other incidents which could affect brand reputation, credibility, and profitability.

    While organisations may understand that there is a critical need for initial due diligence, exposure to risk does not end after a third party has been onboarded. In fact, a survey by Deloitte of executives responsible for governance and risk management of the extended enterprise found that one in five respondents had faced a complete third-party failure or an incident with major consequences. If there had been a greater focus on resilience and prevention efforts, the impact of these failures could have been minimised.

    It is unsurprising that regulators have been calling for better third-party due diligence, including the Foreign Corrupt Practices Act (FCPA) and Anti-Money Laundering (AML), and have increased their focus on third-party governance and risk management.

    This is an area which the pandemic particularly brought to light as many third-party suppliers and business continuity plans were tested with the rapid transition needed in business operations. In times of crisis when organisations strive to be prudent, the need to be on top of these external relationships is even more critical to avoid any punitive measures.

    The action plan needed

    Moving forwards, it is clear an action plan needs to be in place for businesses to ensure they have better oversight of their third-party relationships and their resilience as certain external suppliers can provide a critical function.

    The first step towards achieving better due diligence is for third-party risk management objectives to be aligned with the business objectives, goals, and strategies. Through these integrated goals, organisations can build a more targeted third-party risk management program with specific controls and risk mitigation strategies to protect the organisation. It also becomes easier for GRC teams to have effective conversations around third-party risks with boards and executives.

    Marco Icardi

    Marco Icardi

    As many workforces have currently relocated to their homes and are isolated from their colleagues, having a centralised and online repository set up makes it much easier for teams and third parties across the business to access information that they may need in a secure manner.

    It is also important that each third party is screened and segmented on the associated risks before entering a contract. A good screening process will be well-defined and automated so that insights into potential risks associated with third parties can be established. During this stage, some information that can typically be collected may include financial health, IT risk, business dependence on third parties, availability of business continuity plans and much more. Within this process, risk segmentation is extremely useful as third parties can be scored based on risk and then categorised into various risk tiers.

    This will in turn enable organisations to better define due diligence activities after the onboarding phase. Once this is done, periodic assessments and audits can then be planned to control any risks. To make this process more efficient, businesses can leverage technology to automate various assessments and audit workflows and the findings from these can determine further third-party analyses and remediation of issues in a timely manner.

    Going the extra mile

    Although regular assessments and audits can provide the business with much-needed data on a third party, organisations could go a step further and validate the information collected against content form reliable sources, such as Dow Jones. These sources offer deep insights into a third party’s profile, financial status, credit rating, regulatory compliance, cybersecurity risks, sustainability ratings, as well as any other data which can be used to strengthen third-party due diligence. It can also help to identify any risk areas that may have been missed.

    Issue management may be the final stage in the third-party risk management process, but it is by no means the least important. It is a regulatory requirement to have an effective process in place for third-party issue identification, investigation, escalation, and reporting. Hence, it is crucial for an issue management framework to be established. Organisations should be able to track issues throughout the third-party life cycle, prioritise them based on their criticality to the business and resolve them in a timely manner by collaborating with internal departments, as well as third parties.

    Through following the third-party risk management steps outlined above and by learning from the weaknesses that crises like the current pandemic expose, organisations will indeed be better prepared to prevent, detect and respond to third-party risks and disruptions moving forwards and avoid reputational and financial losses.

    More from Business

    Explore more articles in the Business category

    Image for From Rookie to Rainmaker: How to Thrive as a First-Time Franchisee
    From Rookie to Rainmaker: How to Thrive as a First-Time Franchisee
    Image for The Palessi Principle: What Payless Shoes taught us about turning perception into profit
    The Palessi Principle: What Payless Shoes Taught Us About Turning Perception Into Profit
    Image for How Minky Couture Turned Repeat Purchases and NFL Licensing Into a Breakout Consumer Growth Story
    How Minky Couture Turned Repeat Purchases and Nfl Licensing Into a Breakout Consumer Growth Story
    Image for Nominate Now: Chairman of the Year 2026
    Nominate Now: Chairman of the Year 2026
    Image for Submit Your Entry Today for CEO of the Year 2026
    Submit Your Entry Today for CEO of the Year 2026
    Image for Submit Your Entry Today for Best Management Team 2026
    Submit Your Entry Today for Best Management Team 2026
    Image for Nominate Your Team: Best Innovation Management Team 2026
    Nominate Your Team: Best Innovation Management Team 2026
    Image for Submit Your Entry for Years of Excellence Awards 2026
    Submit Your Entry for Years of Excellence Awards 2026
    Image for Nominations Open for Travel & Hospitality Awards 2026
    Nominations Open for Travel & Hospitality Awards 2026
    Image for Submit Your Entry Today for Telecom Awards 2026
    Submit Your Entry Today for Telecom Awards 2026
    Image for Submit Your Entries for The Next 100 Global Awards 2026
    Submit Your Entries for the Next 100 Global Awards 2026
    Image for Submit Your Entry: Public Sector & Governance Excellence Awards 2026
    Submit Your Entry: Public Sector & Governance Excellence Awards 2026
    View All Business Posts
    Previous Business PostSimplicity Vs. Complexity: Considerations When Deciding on an External Workforce Management Solution
    Next Business PostContinued Momentum on Corporate ESG Reporting