Third-party risk has moved from a back-office concern to a boardroom priority. Yet many organisations still manage their vendor relationships through fragmented processes that leave critical gaps in oversight, resilience, and accountability.
This book offers a clear, practical roadmap for building a robust third-party risk management framework, one that moves organisations from reactive compliance to proactive resilience. It covers the entire vendor lifecycle, from business case and due diligence through onboarding, monitoring, and exit, across regulations spanning multiple global jurisdictions. It introduces proprietary frameworks including the KRIS TPRM Methodology (a 14-stage risk lifecycle), the KRIS PCD Framework (Prevention, Control, Detection) for control design, and the KRIS Risk Maturity Assessment Model for programme evaluation.
With a strong emphasis on governance, cross-functional collaboration, and operational resilience, this book is an essential guide for professionals in risk management, compliance, procurement, audit, and information security, as well as for students, academics, and regulators seeking structured, real-world insights into managing third-party risk.
Serving as the official reference for the Certified Third-Party Risk & Assurance Manager (CTPRAM) programme, it functions both as a practical handbook and a trusted learning resource for those dedicated to strengthening organisational resilience.
Write your review for this book (optional)
Review Deleted
Your review has been deleted and won’t appear on the book anymore.
Krishnan Viswanathan
Krishnan Viswanathan brings over 35 years of senior leadership experience in operations, technology, risk, and governance across global financial institutions and consulting firms. He serves as Independent Director and visiting faculty at leading management institutes, bridging boardroom governance with academic rigor and real-world practitioner insights. He is currently pursuing a doctorate in Risk Management and Governance.
Founder of KRIS Konsulting®, Krish offers consulting and training in Governance, Risk, and Compliance (GRC) and has developed specialized online courses on Fraud Risk, Third Party Risk, and Enterprise Risk. As knowledge partner to the National Institute of Securities Markets (NISM), India, he curated the Certified Anti-Money Laundering Manager (CALM) and other AML courses, and continues championing future-ready leaders in GRC and Audit through pioneering frameworks and education initiatives.
