Risk controls
- Risk controls define the standards and methods your organization uses to control risk.
- In SAP Ariba Supplier Risk, risk controls determine important parts of the process that your organization uses to assess the manageability or acceptability of the risk of engaging with different suppliers and third parties.
Assessments
- Controls always include at least one questionnaire that is designed to assess whether or not the potential risk is manageable or acceptable.
Due diligence
- The investigative process by which a supplier or third party is reviewed to determine their suitability for a given task.
- Due diligence is an ongoing activity, including review of risks, addressing issues, and monitoring throughout the entire vendor lifecycle.