How Responsible Are Your Vendors? Incorporating ESG-Related Risks into VRM

Would you work with a company who has a massive carbon footprint? Would you trust a business with lenient workplace safety standards? Companies are increasingly taking these Environmental, Social and Governance (ESG) issues into account when considering their global and reputational impact.

ESG screening and monitoring are also quickly becoming a vendor risk management (VRM) issue. ESG issues pose sustainability, non-financial or extra-financial risks that can have a significant effect on your business.

Are you certain your vendors are operating responsibly? You need to have confidence in the face of digitalization, climate change, evolving regulations and the ratcheting up of global tensions.

What are ESG-Related Risks?  

In October 2018, the Committee of Sponsoring Organizations of the Treadway Commission (COSO) and the World Business Council for Sustainable Development (WBCSD) partnered to help entities better interpret and manage ESG risks. The report, “Enterprise Risk Management: Applying Enterprise Risk Management to Environmental, Social and Governance-Related Risks,” provides an overview on handling ESG-related risks. Those guidelines include ESG risks related to third-party vendors.

The report advises that VRM programs need to consider ESG-related risks in several categories, including:

  • Sustainability, such as a vendor’s emissions, how they manage water, etc.
  • Reputation or brand
  • Legal
  • Technological
  • Compliance
  • Product or service quality

Examples of ESG-related vendor risk include avoiding raw materials from endangered forests or ensuring apparel suppliers abide by their country’s accords on factory safety and working conditions.

The report also suggests having clear lines of communication with suppliers and higher standards for reporting on material origins and manufacturing processes. The onboarding process and contracts should include a supplier code of conduct and report card specifications, including:

  • Quality
  • Delivery
  • Quantity delivered
  • Performance history
  • Incident report
  • Comments
  • Regular meetings

Current reporting on vendor’s ESG compliance and policies is mostly voluntary — but that may change, and soon. How can you hope to escalate ESG-related risk in your VRM program?

VendorInsight® Provides Valuable Visibility

 VendorInsight® has the VRM tools and features you need to handle this ESG-related paradigm shift in risk management. With VendorInsight® you can assess and mitigate ESG-related risks over the life of a vendor relationship.

The VRM solution can assist in performing onboarding reviews and due diligence reports, managing contracts and reviewing vendor social media and complaints. You can also develop and issue various types of customizable questionnaires to vendors. The VendorInsight® Compliance Questionnaire (VCQ) provides your compliance officers with valuable visibility into a vendor’s adherence to laws and regulations, including a vendor’s:

  • Compliance program
  • Monitoring and testing
  • Training
  • Reporting
  • Legal/Management/Other
  • BCP/DR

A report is generated from the vendor’s response that can be linked to supporting documents. You can even review submitted questionnaires and documents with VendorInsight®’s subject matter experts and analysts.

Learn More

Your VRM program must consider ESG-related risks. A holistic view of risk will help protect your reputation, ease your mind and contribute to a better world.

Request a demo of VendorInsight® to learn how to gain a fundamental understanding of your vendors.

Share this post

Share on facebook
Share on twitter
Share on linkedin
Share on email

Check out some more great content.

How to Prepare for a Vendor Management Exam

Increased third-party vendor outsourcing, high-profile security breaches and expanding regulatory requirements have made Third-Party Risk Management (TPRM) more urgent than ever. Auditors and examiners are

Schedule a demo today.

Webinars are held weekly and scheduled to accommodate your needs. Give us a date and time and a VendorInsight® representative will contact you to confirm your request.