FINRA’s 2025 Third‑Party Risk Updates
FINRA's 2025 guidance emphasizes robust third-party risk management due to increased cyberattacks and outages. Firms must strengthen vendor oversight, enhance incident response planning, address fourth-party risks, and adapt to emerging risks like generative AI. Key steps include updating contracts, due diligence, training, and maintaining a vendor inventory.