RiskTech Forum

Chartis: Vendor Highlights: Aravo Solutions - Third-Party Risk Management 2017

Posted: 31 March 2017  |  Source: Chartis

This report provides an independent evaluation and description of Aravo Solutions’ leading practices and competitive position. The analysis is based on information in the Chartis Report Enterprise GRC Solutions: Market Update 2017, and the RiskTech Quadrant® for third-party risk management solutions.

The report also includes brief coverage of:

Enterprise Governance, Risk and Compliance (GRC) is now well established. The concept of ‘connected’ GRC is becoming more important, but end users and vendors are largely struggling with the concept; financial institutions in particular are still taking a mostly siloed approach to GRC, with weak links between departments. There is, however, potential for significant and widespread changes to enterprise GRC. The trend continues toward increasingly integrated GRC platforms, despite regulatory uncertainty and shifting definitions of what constitutes misconduct. This trend is driven largely by costs and supply-side factors, including:

A particular focus within Enterprise GRC is conduct risk; regulators are giving out larger fines and increasingly targeting individuals for misconduct. And tightening regulations mean that firms, in addition to managing misconduct within their own organizations, are increasingly required to deal with misconduct originating from their business and supply chain partners, as well as other sources of disruption, including data breaches and natural disasters. Doing this requires third-party risk management: firms must apply due diligence when selecting and evaluating their business partners, which relies heavily on access to data from internal and external sources. To protect themselves from third-party failures, firms must generate their own data, or get it from other sources. This focus on data gives vendors with strong data provision and management backgrounds a distinct advantage.

Please register or log in to download the report.