New: Autonomous AI risk intelligence is live — your compliance program in 12 minutes. Get started →
← Glossary · Risk

Vendor Risk

The risk your third-party vendors introduce into your operations, data, and compliance posture.

Vendor risk (also called third-party risk or TPRM) covers everything a supplier could break for you — a breach of your data, a compliance failure, or a service outage. Modern TPRM programs continuously monitor vendor security posture, financial health, and control attestations.

The average SMB carries dozens of critical vendors. Most only review them at contract signing, if at all.

Related terms

See how Scarlet Risk covers Vendor Risk.

One platform for compliance, cyber, crypto, and world-watch risk.

Schedule Live Demo