With such a lack of maturity rampant in vendor risk management, it should come as no surprise that only 44% of organizations report on third-party risk to their executives and boards on a regular basis. So says a report by Bitsight, which also found that one in five respondents think boards do not understand their approaches to third-party risk management.
