Skip to main content
The three lines of defence model and third-party risk management
3 min read

The three lines of defence model and third-party risk management

The ‘three lines of defence model’ is widely recognised in the world of audit as an effective framework for risk management and internal control.

Pair of wandering albatrosses flying above grassy hill, with snowy mountains and light blue ocean in the background, South Georgia Island, Antarctica. Understanding inherent risk and residual risk.
3 min read

Understanding inherent risk and residual risk

Knowing the difference between inherent risk and residual risk is key to good risk management processes.

Third-Party Cyber Risk eBook

Managing third-party cyber risk in the supply chain

Third parties are often a vital part of delivering mission-critical products and services on behalf of client organisations.

A stormy sea: Third party risk management in the wild
8 min read

From hackers to hurricanes: Risk management in the wild

What is third party and vendor risk management, and why is it important?

A smiling man with blonde hair and a red beard. He is wearing glasses and a suit. Chris Wagner, an Associate Director of Finance for Contracts and Procurement within the Lewisham and Greenwich NHS Trust, London.
8 min read

Inside Edge: The NHS’s Chris Wagner on procurement challenges

Managing risks in such a huge organisation is no easy task, especially in healthcare where the stakes are so high.

How strong are your vendors’ ESG frameworks? Polar bear feeling its muscle
1 min read

How strong are your vendors’ ESG frameworks?

Many organisations now support their stakeholders and communities with their environmental, social and governance (ESG) initiatives.

Two yellow butterflies; healthcare with inherent risk questionnaires
5 min read

Improving healthcare with inherent risk questionnaires

Inherent risk questionnaires are an integral part of assessing and managing the risks associated with patient care. 

running tiger
4 min read

5 ways to accelerate your due diligence processes

Incorporate automation into your due diligence, freeing up your resources and expertise to focus on the areas where your organisation really needs it.

Green snake on a branch
5 min read

The 7 deadly sins lurking in your manual process

There are still a lot of risk and procurement teams out there relying on manual elements in their request for proposal (RFP) processes.

Brown bear by Zdeněk Macháček: Emerging from lockdowns and supply chain disruptions: What did we learn?
5 min read

Emerging from lockdowns and supply chain disruptions: What did we learn?

What we need to be preparing for now is the next pandemic, while this one is still fresh in our minds.