Third-Party Risk Management

Third-Party Risk Management

Globalization and increasing regulatory pressures require organizations to examine their business relationships in order to assess risk, make informed decisions, and comply with laws. Government agencies are demanding high standards of business integrity. Failure to adequately scrutinize clients, vendors, agents and business partners could expose organizations to reputational damage, operational risk and even criminal liability. Ignorance is no defense – and what you don't know about your business partners can hurt you.

Related content

third-party risk management

KPMG's recent Global Anti-Bribery and Corruption Survey noted that multinational corporations say that the difficulty in performing effective due diligence on foreign agents/third parties as one of their most challenging anti-bribery and corruption issues. As a result, companies are looking to build processes and programs to manage third-party risk that is efficient, scalable and fits their unique requirements. It also needs to be embedded into their overall compliance program. Many organizations have only just begun to develop processes to on-board new third-party intermediaries (TPIs) and put their existing TPIs through a third-party risk management (TPRM) program.

Typical features of a well designed TPRM process

  • Centralized, transparent workflow that tracks end-to-end due diligence requests in real-time and tracks handoffs across various roles (client's business sponsor, TPI representative, client compliance, and other configurable roles)
  • Automates and stores TPI information through a web front end, available to internal client personnel and external users
  • Enables end-to-end visibility through real-time reporting and configurable dashboard capabilities
  • Facilitates a globally consistent approach to Intermediary Due Diligence across client footprints (configured to multiple languages)
  • Provides the capability to conduct risk analysis based on an established risk model and assigned scores
  • Enables a full featured mobile capability across the user community

KPMG can help clients to identify the appropriate level of due diligence for TPIs, based upon such factors as jurisdictional risk, the nature of the industry and the service provided, the importance of the relationship, etc. KPMG can help create cost-effective, timely, and responsive reporting.

Astrus – A Web-enabled integrity due diligence solution

KPMG's Astrus integrity due diligence solution provides organizations with a strategic, cost-effective, and time-efficient approach.

 
Read more

Astrus Monitoring – Automated online counterparty...

Astrus Monitoring provides a precise and highly configurable system, capable of integra...

 
Read more

Connect with us

 

Request for proposal

 

Submit

KPMG's new digital platform

KPMG International has created a state of the art digital platform that enhances your experience, optimized to discover new and related content.