Third-Party Risk Management Every organisation is different and for that reason, a one size fits all approach should not be applied to your third-party risk management (TPRM) programme. Protiviti delivers third-party risk management (TPRM) solutions that are embedded into day-to-day business functions while aligning to industry and regulatory expectations. We identify cost savings, create efficiencies in processes, and mitigate today’s most critical risks. Successful TPRM drives value by helping business leaders gain visibility and understanding of the impact third parties have on increasing profitability, efficiency and compliance while ensuring your organisation's ecosystem has the resiliency to withstand new and unexpected challenges. If you're in a regulated environment, we help you drive compliance. If you're in a non-regulated environment, we will help increase profitability. Slash costs, improve processes, and mitigate the most critical risks of today Survey December 22, 2023 2024 Top Risks in the Financial Services Industry Protiviti and NC State University’s ERM Initiative have been conducting our Top Risks Survey for the past 12 years. This journey began just as financial markets around the world were starting their long, slow recovery from the global financial crisis, and has since covered the worst global pandemic in 100 years as well as near record-low interest rates followed... Learn more Our Third-Party Risk Management Services Pro Legal Briefcase TPRM Strategy and Programme Assessment, Design and Implementation/Transformation We provide better information that helps drive business decisions and generates revenue enhancing activities from assessing the current state, designing and building end-to-end programmes, enhancing individual life cycle components and implementing impactful changes. Pro Building office Improvement of Individual Risk Domains: Operational Resilience (Business Continuity), IT Security, Privacy, PCI, and Compliance We help leaders streamline data gathering and assessment activities to produce actionable information for each risk domain, support the creation of meaningful and real-time monitoring mechanisms and inform contracting processes through the creation of governance mechanisms that drive stronger Key Risk Indicators, Key Performance Indicators and Service Level Agreements. Pro Digital Hightech Ecosystem Enrichment Enablement Protiviti’s experts partner with your organization to help build the linkages required to have a third-party risk management programme that both protects your business and drives a better bottom line. Strong third-party risk management programmes enable revenue-enhancing activities. Pro Document Stack Third-Party Audits (IT Security/ Shared Assessments, Operations, Compliance) Protiviti’s assessment services drive decision making and inform risk stakeholders in a manner that is consistent with how your organisation manages its risks. We deliver meaningful output to our clients that informs whether a third party meets your expectations across the many risk domains. Pro Briefcase Technology Enablement Implement robust TPRM programmes across a variety of industries and geographies. TPRM requires technology enablement to make life cycle processes connect seamlessly and provide stakeholders with the information required to make better decisions. Protiviti helps you navigate through these implementations to help streamline programmes and processes to keep costs down. Pro Document Consent Targeted Issue Remediation and Incident Response Identify and resolve TPRM issues in a manner that supports your business and reduces the future risk of the same or similar issues repeating at a third party. Issues will arise with third parties no matter how strong your programme may be. An integrated approach to driving value Procurement and TPRM should be integrated across the life cycle to enhance your visibility, efficiency, risk management and cost management. The four sections of the TPRM life cycle each have an important part to play in helping you determine the right partners to drive your business growth and customer success. Protiviti offers an integrated one-stop solution for financial, information technology, compliance and operational due diligence. Transactions that have been through a comprehensive due diligence process are the most successful, and you are able to realis their expected value. Planning: Successful TPRM starts with strong linkages to business strategies and the value creation process. Due Diligence & Third-Party Selection: Risk Assessment, Due Diligence & Third-Party Selection should be coordinated, risk focused and intended to drive business value decisioning. Contract Management: Contract Management should be informed from the results of due diligence and end in contracts that align to business needs and provide appropriate risk mitigation requirements. Monitoring and Management: Strong contracts drive accountability for oversight activities which helps establish expectations for all parties on what will be required to have a successful relationship. NEWSLETTER The Top Risks 10 Years Out: Global Risks Are Persistent Capturing insights from over 1,100 C-level executives and directors across multiple industries with broad geographic representation, our global survey of C-level executives and directors survey offers insights for the top risks over the next 10 years... NEWSLETTER The Top Risks for 2024: Risk Priorities Are Shifting Conducted in partnership with the NC State ERM Initiative, our global survey of C-level executives and directors highlights the influence of economic headwinds, talent issues, emerging technologies, cyber threats and geopolitical events on the 2024... BLOGS How Tech Firms Can Prepare for New EU Operational Resilience Rules on ICT Risks This blog post was authored by Karter Klumpyan and Laura Moore, Director Risk and Compliance on The Protiviti View.The big picture: A two-step indicator-based approach proposed by EU supervisory authorities will be used to assess ICT services... FLASH REPORT U.S. Banking Regulators Finalise (Finally) Revised Third-Party Risk Management Guidance On Tuesday, June 6, 2023, the Office of the Comptroller of the Currency (OCC), the Board of Governors of the Federal Reserve System, and the Federal Deposit Insurance Corporation (collectively, the agencies) issued the “Interagency Guidance on Third... NEWSLETTER Identifying and managing the critical risks of third-party providers “Outsourcing and other third-party relationships can bring multiple benefits to FIs, including: enhanced operational resilience; faster and more tailored financial products and services; cost reduction; greater innovation; and improved internal... SURVEY Navigating a Technology Risk-Filled Horizon Protiviti partnered with The Institute of Internal Auditors to conduct its 11th annual Global Technology Audit Risks Survey in the second and third quarters of 2023.The objective of this survey is to explore the top technology risks organisations... Button Button Notre équipe Arnaud Floquet Arnaud est Managing Director de la practice Risk and Compliance du bureau de Paris. Il possède plus de 20 ans d'expérience professionnelle en matière de gestion globale des risques (ERM), de contrôle interne (SOX / LSF) et de conformité règlementaire (LCB-FT, Sanctions ... En savoir plus Alexandre Roset Associate Director chez Protiviti, Alexandre Roset possède plus de 12 ans d’expérience professionnelle en gestion des risques, conformité, audit interne, contrôle interne et dans la gestion de projet de transformation et des processus associés. Alexandre est notamment ... En savoir plus Jacques Pama Associate Director chez Protiviti, Jacques Pama dispose de plus de 20 ans d’expérience professionnelle dans le pilotage de projets/programmes de transformation autour de la gestion des risques, le contrôle permanent et la conformité dans les services financiers. Au ... En savoir plus