Abercrombie & Fitch Standardizes Third-Party Risk Management with ProcessUnity CASE STUDY The Challenge As a global retailer, Abercrombie & Fitch Co. (A&F) does business with an expansive range of vendors — from textile, office product, and store fixture suppliers to data centers, tax consultants, and construction services — around the world. Traditionally each of the company’s individual risk areas, including legal, corruption, information security, and finance, independently vetted third parties using a combination of email, spreadsheets, and manual tracking. The risk area teams asked vendors to fill out a questionnaire and subject matter experts (SMEs) used the responses to assess risk, conduct due diligence, identify gaps, and mitigate issues. If they decided the level of

Join for free to read