This review is focused on conducting a security risk assessment of third party vendors / service providers. The objective of the review is to assess / evaluate robustness of the vendor's / service provider's risk management practice to render service of the client ensuring business continuity and security of client data.