Featured
America in motion Executive leadership hub - What’s important to the C-suite? Menu Capabilities Capabilities Audit and Assurance Alliances and ecosystems Artificial Intelligence (AI) Board governance issues Consulting Cybersecurity, Risk and Regulatory Deals Digital assets and crypto Digital assurance and transparency Engineering & AI Enterprise Strategy Financial Markets & Real Estate Finance and Accounting Financial statement audit Front Office Managed Services Metaverse Operations PwC Private Risk Modeling Services Sustainability and ESG Tax services Workforce All capabilities Menu Capabilities Audit and Assurance Menu Capabilities Alliances and ecosystems Adobe Amazon Web Services Google Guidewire Microsoft Oracle Salesforce SAP Workday All alliances Menu Capabilities Artificial Intelligence (AI) Menu Capabilities Board governance issues Menu Capabilities Consulting Menu Capabilities Cybersecurity, Risk and Regulatory Menu Capabilities Deals Menu Capabilities Digital assets and crypto Menu Capabilities Digital assurance and transparency Menu Capabilities Engineering & AI Menu Capabilities Enterprise Strategy Menu Capabilities Financial Markets & Real Estate Menu Capabilities Finance and Accounting Menu Capabilities Financial statement audit Menu Capabilities Front Office Menu Capabilities Managed Services Menu Capabilities Metaverse Menu Capabilities Operations Menu Capabilities PwC Private Family enterprises Law firms Private equity and portfolio companies Ultra high net worth individuals US inbounds Menu Capabilities Risk Modeling Services Menu Capabilities Sustainability and ESG ESG reporting Sustainability strategy Sustainable technology and digital Menu Capabilities Tax services Menu Capabilities Workforce Menu Capabilities All capabilities Menu Industries Industries Aerospace and defense Asset and wealth management Automotive Banking and capital markets Chemicals Consumer markets Consumer packaged goods Energy Energy and industrials Engineering and construction Financial services Gaming Health industries Health services Hospitality and leisure Industrial manufacturing Insurance Media Medical technology Pharmaceutical and life sciences Power and utilities Private equity Real estate Restaurants, wholesale and agriculture Retail Space Sports Technology Technology, media and telecommunications Telecommunications Travel, transportation and logistics Menu Industries Aerospace and defense Menu Industries Asset and wealth management Menu Industries Automotive Menu Industries Banking and capital markets Menu Industries Chemicals Menu Industries Consumer markets Menu Industries Consumer packaged goods Menu Industries Energy Menu Industries Energy and industrials Menu Industries Engineering and construction Menu Industries Financial services Menu Industries Gaming Menu Industries Health industries Menu Industries Health services Menu Industries Hospitality and leisure Menu Industries Industrial manufacturing Menu Industries Insurance Menu Industries Media Menu Industries Medical technology Menu Industries Pharmaceutical and life sciences Menu Industries Power and utilities Menu Industries Private equity Menu Industries Real estate Menu Industries Restaurants, wholesale and agriculture Menu Industries Retail Menu Industries Space Menu Industries Sports Menu Industries Technology Menu Industries Technology, media and telecommunications Menu Industries Telecommunications Menu Industries Travel, transportation and logistics Menu Technology Technology Alliances and ecosystems Delivery platforms Emerging technology Engineering & AI Products Tech-enabled services Tech Effect Menu Technology Alliances and ecosystems Adobe Amazon Web Services Google Cloud Guidewire Microsoft Oracle Salesforce SAP Workday Menu Technology Delivery platforms Concourse Sightline Menu Technology Emerging technology Artificial Intelligence (AI) Digital assets and crypto Metaverse Responsible AI Web3 Menu Technology Engineering & AI Menu Technology Products Analytics Foundation Beacon Bookkeeping Connect Connected Solutions Enterprise Control Investor Survey Model Edge Next Level HR Profit Seeker Ready Assess Saratoga Risk Link View all products Menu Technology Tech-enabled services Agile Commerce Carbon Ledger Culture Thumbprint Enhanced insurance analytics for Salesforce ESG Geospatial Climate Intelligence (GCI) Insights to Enablement Market Advantage Payer Advocacy Center Ready Command Shovel Ready Menu Technology Tech Effect Menu About us About us Alumni Analyst relations Investing in our people Newsroom Offices Our leadership Purpose and values Menu About us Alumni Join the PwC Alumni Network Meet our alumni Menu About us Analyst relations Menu About us Investing in our people Menu About us Newsroom Menu About us Offices Menu About us Our leadership Menu About us Purpose and values Be Well, Work Well Environmental sustainability Inclusion Social impactFeatured
Tech Effect Menu Careers Careers Why PwC Entry Level Careers Experienced Careers University Relations Menu Careers Why PwC Benefits & Compensation The PwC Professional US Careers Podcast hub Menu Careers Entry Level Careers Search opportunities Recruiting process Student Development Programs Advance Internship Military and Veterans Student programs quiz Menu Careers Experienced Careers Search opportunities Contract opportunities Alumni Careers Military and Veterans Menu Careers University Relations University Relations Faculty NewsletterFeatured
Shared success benefits Loading ResultsNo Match Found
View All Results How to uncover the risks of third-party relationships in your supply chains Summary Third-party blind spots can cause threats, including data breaches, ransomware, cloud compromises and privacy violations. Today’s technologies can quickly and accurately give an enterprise a clearer, more expansive view of its third parties. PwC developed Third Party Tracker to help determine which vendors pose the highest risk to an enterprise. You can’t manage what you don’t see, and businesses have a large blind spot regarding their third-party partnerships. Only 40% of business executives in our 2022 Global Digital Trust Insights survey say they thoroughly understand the risk of data breaches through third parties. Nearly a quarter have little or no understanding of all these risks — a major blind spot of which cyber attackers are aware and willing to exploit. And yet, enterprise dependence on third parties is increasing, and the number of breaches these partnerships cause is on the rise. One reason why: third-party risk-management (TPRM) processes are woefully out of date. Many times, organizations vet their third parties, including contractors and vendors primarily using surveys, which depend on accuracy and honesty in their responses. But how likely is any organization to self-report bad news such as a finding of non-compliance or data breach? Businesses depend on surveys and other traditional vetting processes — despite the problems they can create — for various reasons. Perhaps they don’t know how or where to find data that would provide a more accurate picture of third-party risk. Or they may not have the resources to collect information on hundreds, thousands — or hundreds of thousands — of business partners. Whatever the reason, risks to their organization continue to snowball as these enterprises take on more vendors, suppliers, resellers, and contractors. 60% of organizations have not done a formal assessment of third-party risks 60% of organizations have not done a formal assessment of third-party risks Data breaches % Privacy violations % Cloud risks % loT/technology vendors % Software supply chain risks % Nth party risks % Source: PwC, 2022 Global Digital Trust Insights, October 2021 The price of TPRM blind spots can extend beyond minor glitches or supply-chain delays to costly, potentially business-crippling threats. These threats include data breaches, ransomware, cloud environment compromises, and privacy violations that could send an enterprise spiraling into non-compliance. At least one-third of our US survey respondents said that, in the past year alone, they’d experienced significant disruptions due to third parties: software supply chain disruptions (47%), cloud breaches (45%), third-party platform exposures and outages and downtime (41%), or data exfiltration (39%).All eyes on the data-driven TPRM prize
Regulators are paying close attention to third-party risks, and how companies deal with them. Recent guidance from the US Department of Justice emphasizes the importance of using data to help improve compliance programs. And memos from the Biden administration underscore the federal government’s focus on fighting corruption and improving cybersecurity.
Your third parties’ business practices reflect on your company, too. Investors looking at Environmental, Social, and Governance (ESG) factors will likely want to know that your third parties are operating lawfully and ethically. And to track and report ESG activities, your company must monitor its third-party risks.
Aware of these concerns, PwC and Microsoft sought a solution to the third party problem using new and emerging technologies: artificial intelligence, automation, and data analytics.
Like the lion’s share of enterprises, Microsoft was primarily using surveys to get information on its vendors — more than 250,000 of them. Keeping tabs on the risks they posed, from onboarding all the way through the end of each contract, proved expensive and time-consuming, not to mention rife with blind spots.
These concerns aren’t limited to any one enterprise or industry: they affect most, if not all. But the support of today’s technologies can quickly and accurately give an enterprise a clearer and more expansive view of its third parties — saving time and money, and improving compliance.
Finding the riskiest needles in the third-party stack
Seeking a better way to vet and monitor third-party relationships, PwC developed Third Party Tracker. This solution mines surveys and internal and external information to help determine which vendors pose the highest risk to your enterprise.
The software uses a risk-scoring methodology with parameters that can be customized for your business. Third Party Tracker analyzes data that helps answer specific questions, including: Has it had issues in the past such as data breaches, adverse media reports, or findings of non-compliance? How does it fare with ESG concerns such as sustainability and human rights? In a sense, TPT can help you begin to understand the trustworthiness of your third parties on matters that are important to your business.
Third Party Tracker also considers individual factors such as the amount of business your enterprise is doing or plans to do with the third party and the level of access it has to your networks and data.
Microsoft used Third Party Tracker to identify the riskiest entities among its channel resellers. By focusing its due-diligence efforts on these high-risk entities — rather than applying them to all 250,000+ — the company saved millions of dollars. Eliminating false-positive alerts saved the company additional time and money.
Strengthening the chain
With a list of high-risk third parties in hand, your company can then determine how to best address each. Are any too risky? You may curtail or even end your dealings with them. Or you may opt for on-site audits, or instill controls to mitigate risks. And you may wish to change how you onboard and assess your third parties. More than half of companies have taken none of the three actions that promise a more lasting impact on their third-party risk management More than half of companies have taken none of the three actions that promise a more lasting impact on their third-party risk management Audited or verified the security posture and compliance of third parties or suppliers % Refined our criteria for onboarding and ongoing assessments of third parties % Provided knowledge-sharing or assistance to third parties shore up their cybersecurity postures % Addresses challenges, cost-related or time related, that affect your ability to be cyber resilient % Rewritten contracts with certain third parties to mitigate our risks % Performed more rigorous due diligence % Exited relationships with certain third parties % None of the above % Source: PwC, 2022 Global Digital Trust Insights, October 2021 Should your third parties’ risk levels rise or fall, you won’t need to wait until the next survey to find out. Third Party Tracker flags when risk scores change so you can get ahead of problems before they happen. Before: And the data it provides helps you talk to your board about the risks so it can exercise better oversight. Given today's technologies, there’s no reason to remain in the dark about risks. Companies that report being more cyber-secure in the last two years are 11x more likely to understand their third-party risks. Having this knowledge can also create stronger bonds of trust between your business and its third parties and give you the confidence to forge ahead — together — in today’s highly competitive market. Be cyber-ready for tomorrow See how PwC and Microsoft can help strengthen threat-detection capabilities. Learn more
Scott Gelber
Principal, Cybersecurity, Privacy & Forensics, PwC US
Chris O'Connor
Managing Director, Cyber Managed Services, PwC US
Douglas Li
Director, Cybersecurity, Privacy & Forensics, PwC US
Next and previous component will go here Our insights. Your choices. Subscribe here Follow us Audit and assurance services Consulting Tax services Newsroom Alumni US offices Contact us © 2017 - 2026 PwC. All rights reserved. PwC refers to the PwC network and/or one or more of its member firms, each of which is a separate legal entity. Please see http://pwc.zhutiblog.com/com/structure for further details. Privacy Data Privacy Framework Cookie info Legal Terms and conditions Site provider Site map Your Privacy Choices智能索引记录
-
2026-02-28 08:36:51
综合导航
成功
标题:欢乐园《镇魂街》双线43区2018年5月2日10:00强势开启_镇魂街新闻公告_镇魂街官网_欢乐园镇魂街官网
简介:2018年超人气动漫正版授权网页游戏《镇魂街》双线43服将于5月2日10:00强势开启,以最受期待的热血国漫《镇魂街》为
-
2026-02-28 00:38:05
综合导航
成功
标题:New Arrivals: Bottoms Aerie
简介:Shop Aerie’s new arrival bottoms—fresh styles, perfect fits,
-
2026-02-27 20:37:57
综合导航
成功
标题:Music Coloring Pages for Kids EDU.COM
简介:Explore hundreds of free printable Music Coloring Pages for
-
2026-02-28 01:46:27
综合导航
成功
标题:MX Trusted Connectivity Securely Connect & Verify Data
简介:MX’s open finance APIs enable financial providers to build s
-
2026-02-28 20:02:25
综合导航
成功
标题:Converse Chuck Taylor All Star Pro Suede Ox Shoes - Thunder Whale/Blac – CCS
简介:Shoe Sole:Vulcanized,Shoe Style:Skate Shoes,Shoe Material:Su
-
2026-02-27 17:46:19
综合导航
成功
标题:Logistikmanagement â Effiziente Steuerung der Lieferkette IGZ
简介:Logistikmanagement optimiert die Planung, Steuerung und Ãbe
-
2026-02-28 05:58:37
综合导航
成功
标题:Bracket that links main suspension arm to toeangle suspension arm [Archive] - Toyota MR2 Message Board
简介:Need one ASAP, I bent it and now wheel is all misaligned :lo
-
2026-02-28 05:38:45
综合导航
成功
标题:EY - US Shape the future with confidence
简介:Five key SEC priorities in 2024
-
2026-02-28 09:53:46
母婴亲子
成功
标题:麦田故事网_童话故事_寓言故事_励志故事_80麦田故事
简介:麦田故事网为你提供儿童睡前故事,童话故事,寓言故事,在线阅读的故事网站。
-
2026-02-28 13:32:41
综合导航
成功
标题:中国风国潮毕业论文学术答辩模板-果果圈模板
简介:中国风国潮毕业论文学术答辩模板主要是为即将毕业的大学生们准备的,帮助喜欢中国风的学生们能够通过该模板制作出自己满意的论文
-
2026-02-28 09:43:06
游戏娱乐
成功
标题:浙江传奇游戏_2025最新精品传奇游戏_BT页游排行榜推荐_稀有满V版变态网页游戏公益服
简介:浙江传奇游戏专注最新精品传奇网页游戏,绿色公益服游戏,超低折扣福利让网页游戏和bt手游玩家更爽更省钱玩游戏,上线满V送元
-
2026-02-27 20:56:55
综合导航
成功
标题:AI智能索引
简介:Antworten zu den wichtigsten Fragen rund ums Fliegen ab Düss
-
2026-02-28 05:48:18
综合导航
成功
标题:趯字的意思_趯字的解释、组词、拼音、组词、笔顺、部首-雄安文学网
简介:雄安文学网为您提供【趯】字的详细解释,包括【趯】组词、拼音、组词、笔顺、部首和笔画,帮助您全面理解和掌握【趯】的含义和用
-
2026-02-28 09:16:29
综合导航
成功
标题:85/86 intake snorkel and antenna
简介:I
-
2026-02-28 03:47:31
综合导航
成功
标题:Online Banking, Loans, Credit Cards & Home Lending TD Bank
简介:Explore TD
-
2026-02-27 13:20:49
综合导航
成功
标题:Librairie chrétienne Excelsis
简介:Excelsis, librairie chrétienne, protestante et évangélique e
-
2026-02-28 19:41:20
教育培训
成功
标题:随心作文600字合集八篇
简介:在日常学习、工作和生活中,大家都尝试过写作文吧,作文可分为小学作文、中学作文、大学作文(论文)。那么你知道一篇好的作文该
-
2026-02-27 13:19:52
游戏娱乐
成功
标题:攻铩火龙王殿在哪 迷宫1-3层怎么走_欢乐园游戏
简介:在攻铩火龙王殿里会刷新出一只超强的魔化火龙王来,能够爆出八转及以上等级的装备,想必这是每个玩家都十分感兴趣的,那么究竟火
-
2026-02-27 13:30:24
综合导航
成功
标题:2017年安全工程师报名网站:中国人事考试网-中级注册安全工程师-233网校
简介:2017年安全工程师报名开始后,考生通过中国人事考试网进行报名。 2017年报名指导及备考策略>>
-
2026-02-28 09:45:52
综合导航
成功
标题:Bun — A fast all-in-one JavaScript runtime
简介:Bundle, install, and run JavaScript & TypeScript — all in Bu
-
2026-02-28 10:11:35
综合导航
成功
标题:PF/CF シリーズ 光コネクタ コネクタ メーカー JAE 日本航空電子工業
简介:日本航空電子工業株式会社(JAE)のPF/CF シリーズ 光コネクタがご覧いただけます。
-
2026-02-27 20:43:19
综合导航
成功
标题:Property Tax Management & Consulting
简介:Managing your property taxes shouldn
-
2026-02-28 06:15:41
综合导航
成功
标题:18luck新利官网利app-你玩乐的的好帮手
简介:18luck新利官网专注于为玩家打造无忧的游戏环境。其官方应用程序以简洁流畅的设计、便捷的操作体验和丰富的游戏内容,成为
-
2026-02-28 08:22:45
综合导航
成功
标题:Le petit Camisard – Excelsis
简介:Au gré des pérégrinations d’un petit campagnard cévenol et d
-
2026-02-27 18:02:40
综合导航
成功
标题:Magenta Meru Highneck Sweater - Brown – CCS
简介:Sweater Style:1/4 Zip,Sweater Design:Solid,Sweater Material:
-
2026-02-28 00:55:35
综合导航
成功
标题:3 Elements of Walmart’s Store of the Future
简介:No cashier, pay by text, delivery and more currently in test
-
2026-02-28 06:08:06
综合导航
成功
标题:Chú Thích XS
简介:Khám Phá Bảng Thuật Ngữ
-
2026-02-27 12:38:41
综合导航
成功
标题:Netflix has just added a killer feature subscribers will love T3
简介:Want to hide half-watched tosh from your Netflix Continue Wa
-
2026-02-27 20:32:53
综合导航
成功
标题:Derron Stark EY-Parthenon Partner, Strategy & Transactions, Health Sciences & Wellness Supply Chain, Ernst & Young LLP. EY - New Zealand
简介:<p>Derron is the EY-Parthenon Managing Director in Strategy
-
2026-02-27 19:15:35
综合导航
成功
标题:† Weal v.1. World English Historical Dictionary
简介:† Weal v.1. World English Historical Dictionary