What is the primary purpose of a third-party risk management (TPRM) program?
-
A
To identify, assess, and mitigate risks introduced by external vendors and service providers
-
B
To eliminate all vendor relationships that pose any potential risk
-
C
To transfer all operational responsibilities to third-party providers
-
D
To ensure all vendors use the same technology platforms