Focuses on auditing the risks associated with third-party relationships, including contract compliance, performance management, data security, and reviewing SOC reports.