Relevant Results
Sorry, there are no results matching your search.
Autocomplete suggestions are available. Use up and down arrows to review and enter to select.
See more results

How Is Your Company Protecting Against Vendor Risk?

As corporate outsourcing grows, so does the need for due diligence in the supply chain.

The risks of outsourcing

The risks to business continuity and reputation seem to be growing each day. Now take those risks and multiply them by all the businesses that your company relies on for its daily operations – dozens or even hundreds of suppliers.

Outsourcing often increases strategic efficiency, but as your vendor ecosystem grows, so do the risks, as the disruption suffered by one provider could have a cascading effect on the rest of your business.

In today’s complex supply chain environment, there’s a growing need for independent specialists to provide assurance that vendors have the proper controls in place. It’s a natural role for auditors, many of whom can now analyze virtually any business system through a System and Organization Control report, or SOC report for short.

Click here for an infographic of the different types of SOC reports.

Read full article

“The business risks related to digitalization and outsourcing continue to increase. A SOC report is one way to identify the risks as well as the controls in place. It provides a transparent understanding of which risks you’ve chosen to outsource, and it’s a generally accepted standard that outsourcing organizations use to meet the requirements of customers, stakeholders or regulators.”

- Heather Paquette, National Technology Assurance Leader, Audit, KPMG US

Explore more insights

Insight iconInsight
Webcast ReplayWebcast UpcomingListen Now

Compliance & accuracy of data and cloud computing control risks

Trends in ICOFR Programs

Read more
Insight iconInsight
Webcast ReplayWebcast UpcomingListen Now

Five critical risks TMT companies must tackle now

A sector that has always led on tech and innovation is spending more time on risk.

Read more
Next-Generation Approaches for Access Control Management
Insight iconInsight
Webcast ReplayWebcast UpcomingListen Now

Next-Generation Approaches for Access Control Management of Business Applications

Join KPMG and Fastpath on April 13, 2023, for a CPE webcast, where we will dive deep into new approaches required to adequately secure the business application threat landscape.

Read more

April 14, 2023

Audit insights and trends
Insight iconInsight
Webcast ReplayWebcast UpcomingListen Now

Audit insights and trends

Gain a fresh perspective on industry specific insights, trends and additional resources from KPMG Audit leadership which will provide you with a relevant look into key audit topics.

Read more
Insight iconInsight
Webcast ReplayWebcast UpcomingListen Now

On the CAE Agenda Q3-2023 – Financial services

The latest trends affecting the role of internal audit in financial services

Read more
Insight iconInsight
Webcast ReplayWebcast UpcomingListen Now

On the CAE Agenda Q1/Q2-2023

The latest trends affecting the role of internal audit

Read more

Contributors

Image of Heather Paquette
Heather Paquette
National Technology Assurance Leader – Audit, KPMG US
Read bio
Image of Bernie Weiger
Bernie Weiger
Technology Assurance – Audit Partner, KPMG US
Read bio

KPMG. Make the Difference.


Some or all of the services described herein may not be permissible for KPMG audit clients and their affiliates or related entities.

The information contained herein is of a general nature and is not intended to address the circumstances of any particular individual or entity. Although we endeavor to provide accurate and timely information, there can be no guarantee that such information is accurate as of the date it is received or that it will continue to be accurate in the future. No one should act upon such information without appropriate professional advice after a thorough examination of the particular situation. KPMG LLP does not provide legal services.

The information contained herein is not intended to be “written advice concerning one or more Federal tax matters” subject to the requirements of section 10.37(a)(2) of Treasury Department Circular 230.

© 2025 KPMG LLP, a Delaware limited liability partnership and a member firm of the KPMG global organization of independent member firms affiliated with KPMG International Limited, a private English company limited by guarantee. All rights reserved.

For more detail about the structure of the KPMG global organization please visit https://home.kpmg/governance.

Thank you!

Thank you for contacting KPMG. We will respond to you as soon as possible.

Contact KPMG

Use this form to submit general inquiries to KPMG. We will respond to you as soon as possible.

By submitting, you agree that KPMG LLP may process any personal information you provide pursuant to KPMG LLP's Privacy Statement.

An error occurred. Please contact customer support.

Job seekers

Visit our careers section or search our jobs database.

Search now!

Submit RFP

Use the RFP submission form to detail the services KPMG can help assist you with.

Submit

Office locations

View locations

International hotline

You can confidentially report concerns to the KPMG International hotline

Learn more

Press contacts

Do you need to speak with our Press Office? Here's how to get in touch.

Contact

Headline