This is the process of managing risks associated with the external relationships that an organization has with another organization – the third party. The third-party risk management lifecycle includes planning to engage in the third-party relationship; third party selection and due diligence; contract negotiation; ongoing monitoring; termination; oversight and accountability; documentation and reporting; and independent reviews.