Summary: PUMA, the multinational brand of sportswear, significantly improved their Vendor Risk Management with OneTrust. In less than a year, triggered a collaborative process to assess the risk, incorporating over 250 providers in just 17 days on average.
The challenge
PUMA needed a clear structure and consistent way to assess the risk associated with their providers. Its aim was to:
- Know the risks of IT that are associated with each provider.
- Having a process is consistent and repeatable.
- Reduce the time and resources dedicated to the management of suppliers.
The solution
Adopted OneTrust Vendor Risk Management and created a process called “Vendor Check that:
- Assesses and monitors risks from suppliers with a framework standardized.
- Allows collaboration between teams to complete assessments quickly and efficiently.
- Integrates the service providers in the system for continuous tracking.
Top results
- 250 vendors evaluated since the launch in 2023.
- Average time of 17 days for evaluation, 80% less than before.
- 80 % reduction in time in the risk management of vendors.
Testimony of PUMA
“Using the OneTrust platform, our teams were able to create a clear framework for evaluating and monitoring vendor risks.”
Florian Brandner, Global Chief Information & Cyber Security – PUMA
Conclusion
PUMA transformed their Vendor Risk Management with a focus on fast, efficient, and scalable. In just a few months, managed to automate risk assessments of suppliers, enhance internal collaboration, and achieve greater visibility and control.
