“While organisations recognise third-party and supply chain risk, in practice, this is a challenge to mitigate and requires significant cross-functional collaboration internally, from the IT, procurement, to legal and compliance departments,” he said.