Third-party risk management is undergoing a fundamental shift. For years, companies built their programs around familiar categories—corruption risk, sanctions exposure, data privacy, financial ...