Masterclass: Third-Party Risk Management for Business Leaders

This masterclass is built for the people who actually own third-party relationships: Procurement Directors, Sustainability Managers, Operations Leaders and Compliance Professionals. Over two intensive live days, you will get the strategic understanding, practical tools and decision-making frameworks to govern your extended third-party ecosystem — and to demonstrate that governance to your board. This Program will be divided into 6 Modules: Module 1 — The burning platform Why third-party risk has never been higher. Regulatory drivers — GDPR, DORA, CSDDD, modern slavery legislation. The management gap most organisations don't know they have. Real-world case studies: Target, British Airways, SolarWinds, Marriott. Module 2 — Vendor inventory, tiering and due diligence Building a complete vendor register. Applying a risk-based tiering model. Designing a proportionate due diligence process. The SIG questionnaire, financial red flags, and producing an auditable risk report. Module 3 — Contract risk and vendor agreements The contract as a risk management instrument. Non-negotiable clauses: SLAs, audit rights, incident notification, data protection, termination for cause. Exit provisions and transition planning. Module 4 — The six risk domains and how each translates into procurement and governance decisions. - Operational resilience - Cyber and digital risk - Ethics and integrity - Social and labour risk - Environmental and climate risk - Macro and geopolitical risk Module 5 — Monitoring, incidents and escalation Building a tiered monitoring programme. Vendor scorecards. The five-phase incident response framework. GDPR's 72-hour notification rule and when to act immediately. Module 6 — Building your programme Three lines of defence. TPRM policy design. The maturity model and 12-month roadmap. Making the business case to leadership. Each participant leaves with a personalised action plan. Live Q&A. This class will be highly interactive with only 12 participants.