Be responsible and effective: strike a balance
Extended enterprise risk management (EERM)
Third-party risk management global survey 2020
Download the report

A desire to be a responsible business that effectively manages social and environmental issues and responsibilities throughout its supply chain, is – for the first time in five years – one of the key reasons companies invest in third-party risk management (TPRM).
Deloitte’s fifth annual extended enterprise risk management (EERM) global survey report highlights six key themes, alongside the impact of COVID-19 on managing third-party risk and our predictions for 2020-21.
Insights provided in this report are based on 1,145 survey responses from 20 countries globally between November 2019 to January 2020 and conversations had with clients.
How we help clients
For many organisations, their third-party ecosystem, or ‘extended enterprise’, is an important source of business value and strategic advantage. However, as the reliance on third parties continues to grow, so do the associated risks, bringing potential reputational damage and regulatory action.
Our experienced teams work with clients to develop governance frameworks which effectively identify and manage all forms of third-party risks, looking at both process and technology solutions to deliver value and meet contractual obligations.
If you would like to discuss the findings of our third-party risk management survey and how they apply to your organisation, please get in touch with one of our specialists.

Kristian Park is global leader for Extended Enterprise Risk Management and partner in Deloitte UK.
Kristian Park leads the Extended Enterprise Risk Management team in the EMEA region, as well as leads Deloitte’s Global Third-party Risk Management (TPRM) group.

Danny Griffiths is a Director in our London based Extended Enterprise Risk Management (EERM) team.
Danny Griffiths is a Director in our London based Extended Enterprise Risk Management (EERM) team.

Sanjoy Sen is the head of research for third party risk management at Deloitte LLP.
Sanjoy Sen is the head of research for third party risk management at Deloitte LLP.
Previous EERM reports

Third Party Governance & Risk
Management – 2019
All together now
Deloitte’s fourth annual extended enterprise risk management (EERM) survey shows there is renewed focus on maturing EERM practices within most organisations. This appears to be driven by a recognition of underinvestment in EERM coupled with mistrust of the wider uncertain economic environment.

Third Party Governance & Risk
Management – 2018
Focusing on the climb ahead
Deloitte’s third annual extended enterprise risk management (EERM) survey aims to capture improvements in maturity of EERM frameworks with a specific focus on the business case and investments in EERM.

Third Party Governance & Risk
Management – 2017
Overcoming the threats and uncertainty
Deloitte’s second annual extended enterprise risk management (EERM) survey covers a number of issues that span the management of the extended enterprise and related risks in a rapidly changing environment.

Third Party Governance & Risk
Management – 2016
The threats are real
The survey results show that investment by organisations in third party governance risk management (TPGRM) has increased year on year and that organisations are implementing or refining their TPGRM processes and frameworks