FINRA’s 2025 Third‑Party Risk Updates
FINRA's 2025 guidance emphasizes robust third‑party risk management due to increased cyberattacks and outages. Firms must strengthen vendor oversight, enhance incident response planning, address fourth‑party risks, and adapt to emerging risks like generative AI. Key steps include updating contracts, due diligence, training, and maintaining a vendor inventory.