The Challenge
Amid increasing regulatory scrutiny on supply chain resilience and third-party oversight, two global insurers faced similar challenges in scaling and maturing their existing Third Party Risk Management (TPRM) frameworks.
Key issues included:
With regulators placing greater emphasis on operational resilience, third-party criticality and demonstrable supply chain oversight, both organisations required enhanced maturity in identifying, assessing and governing third-party risk in a measurable and proportionate manner.
Our Approach
Working closely with the Heads of TPRM and incorporating input from Second Line of Defence (2LoD) functions to ensure regulatory alignment, we:
Further, using regulatory guidance to define critical third parties and concentration risk exposure, we designed a practical, risk-based methodology to:
The Outcome
Both organisations now operate with a more mature, regulator-aligned TPRM capability that strengthens supply chain resilience and enhances governance oversight.
A collaborative and valuable engagement. Stratiformis helped break down a complex regulatory subject matter into clear, actionable plans and business outcomes, and supported the end-to-end shaping and implementation of the program over 18 months. Having a trusted advisor and SME alongside our team meant a more efficient and focused delivery overall.
Stratiformis engaged in a focussed and accelerated manner to develop a comprehensive operating model capability breakdown, along with identification of the firm’s critical business processes Given the breadth of stakeholders and the inherent complexity of the processes, this work required both rigor and strong business insight — all of which Stratiformis delivered with diligence and professionalism.