AI can enhance Third-Party Risk Management (TPRM) by automating security questionnaires, enabling continuous monitoring, and providing real-time risk assessments.
Discussed during a CISO Series episode, experts highlighted the importance of integrating AI to better understand and manage cumulative risks from vendors, moving away from traditional checkbox exercises. Agile risk assessments, predictive analytics, and marrying threat intelligence with compliance data were seen as critical advancements. Concerns about false positives and accountability remain, emphasizing that while AI augments decision-making, it should not supplant human oversight.
https://cisoseries.com/can-ai-improve-third-party-risk-management-tprm/