New: Autonomous AI risk intelligence is live — your compliance program in 12 minutes. Get started →
← Glossary · Risk

TPRM

Third-Party Risk Management — the discipline of assessing and monitoring your vendors.

TPRM programs establish inherent risk tiers, collect due diligence at onboarding (SOC 2 reports, insurance, security questionnaires), and monitor for changes over the vendor's lifecycle.

Mature TPRM programs continuously monitor rather than re-questionnaire annually.

Related terms

See how Scarlet Risk covers TPRM.

One platform for compliance, cyber, crypto, and world-watch risk.

Schedule Live Demo