Organizations accept third-party risk management (TPRM) as an aspect of their risk management process, yet it has historically lacked the visibility, prioritization, and executive support of other risk domains. However, the frequency and magnitude of third-party risk events are finally gaining the attention of senior executives and boards of directors for all the wrong reasons. Risk pros should use this report to recognize what an effective TPRM program looks like, and understand what it takes to launch, grow, and mature their organization’s TPRM program.