← Glossary · Risk
TPRM
Third-Party Risk Management — the discipline of assessing and monitoring your vendors.
TPRM programs establish inherent risk tiers, collect due diligence at onboarding (SOC 2 reports, insurance, security questionnaires), and monitor for changes over the vendor's lifecycle.
Mature TPRM programs continuously monitor rather than re-questionnaire annually.
Related terms
See how Scarlet Risk covers TPRM.
One platform for compliance, cyber, crypto, and world-watch risk.
Schedule Live Demo