Get Started

Previous participants include Procurement, Risk, Compliance, and AP leaders from Marsh, Kimberly Clark, Shell and other global organisations.

Benchmark, learn and innovate with peers

Explore supplier risk challenges and solutions with leaders from other large organisations. Hear what worked (and didn't) for them and leave with practical ideas to take to your team.

Master Data Quality

Don't trust your existing supplier data? Hear how your peers addressed duplicates and inaccuracies.

Risk & Compliance

Need to improve visibility and actionability? Hear how peers manage risk at scale.

Fraud & Payment Controls

Suffered a fraud event or suspect you're overpaying vendors? Hear how peers embedded controls.

Agenda

Part 1: Understanding Third-Party GRC Today

  • Part 1: Understanding Third-Party GRC Today

  • Part 2: Building an Effective GRC Strategy

  • Part 3: Managing the Third-Party Lifecycle

  • Part 4: Using Technology to Resolve Risks at Scale

Part 1: Understanding Third-Party GRC Today

Why risk management matters, how companies get it wrong and ways Procurement can lead the way in supplier GRC.

• Why supplier risk management matters for Procurement

• The growing risk landscape (ESG, cyber, regulatory, geopolitical)

• Common challenges: siloed processes, poor visibility, manual inefficiencies

• Procurement’s role in governance, risk management, and compliance

Part 2: Building an Effective GRC Strategy

A best-practice look at defining your risk strategy, engaging your stakeholders, aligning to objectives and planning for success.

• Blueprint for effective Third-Party GRC

• Breaking down silos and aligning stakeholders

• Defining governance, roles and accountability

• Moving from fragmented to integrated programs

Part 3: Managing the Third-Party Lifecycle

Embedding risk and performance management across the full supplier lifecycle.

• Onboarding with risk-based due diligence

• Ongoing monitoring, audits and issue management

• Offboarding and continuous improvement

• Driving visibility through data and reporting

Part 4: Using Technology to Resolve Risks at Scale

Using technology to scale, automate, and strengthen third-party risk management.

• The role of integrated data and technology

• Automating workflows and improving visibility

• Leveraging risk intelligence and analytics

• Building a scalable, future-ready GRC framework

 

Your Host: Michael Rasmussen

Michael Rasmussen is an internationally recognized thought leader and pioneer in governance, risk management, and compliance (GRC). With over 30 years of experience, he has extensive expertise in enterprise GRC strategy and processes supported by robust information and technology architectures. Known as the “Father of GRC,” Michael was the first to define and model the GRC market in February 2002 while at Forrester, setting the foundation for the modern understanding of GRC.

 

Michael helps organizations build and refine their GRC strategies, ensuring alignment with business objectives to deliver effective, efficient, resilient, and agile operations. He is a highly sought-after keynote speaker, author, and advisor. His influential work has contributed to U.S. Congressional reports and committees. Michael is an OCEG GRC Fellow, serves on the Leadership Council of OCEG, and chairs the OCEG Technology Council.

A picture of Michael Rasmussen

Complete this quick form and we will get back to you within 24 hours.