Editor's Note: This article was originally published on www.sdcexec.com.
Two-thirds of respondents report that their third-party risk management (TPRM) programs have more visibility among executives and the board compared to last year. However, it took massive increases in third-party vendor and supplier-related cybersecurity issues such as Log4j, the Toyota supply chain breakdown and the Kaseya ransomware attack to get there.
That’s because close to 45% of companies surveyed say manual processes are still holding their organizations back, and that they use spreadsheets to assess their third parties more this year than 2021, according to the Prevalent study.
"The past year has brought even more attention to the risks associated with third-party vendors and suppliers, specifically to the supply chain with continued cyber disruptions," says Brad Hibbert, chief strategy officer for Prevalent. "And although today's survey illustrates that organizations are starting to view their third-party management programs more strategically, there is still more progress to be made. More and more companies are starting to assess non-IT risks, which is a step in the right direction. But unfortunately, over half are not and that could lead to financial loss. Together, with a comprehensive TPRM solution, companies can build a stronger defense against IT and reputational third-party risks."