Case Study: Mastercard achieves a safer payments ecosystem and comprehensive fourth-party risk visibility with MetricStream Third-Party Risk Management

Mastercard Builds a Safer Payments Ecosystem with a Fourth-Party Risk Monitoring Program

Mastercard, a global payments technology provider, faced rising risk exposure as thousands of fourth parties (processors, data stores, wallet operators, etc.) entered its ecosystem without visibility into their controls. Although customers are contractually responsible for those fourth parties, Mastercard chose to take ownership of fourth‑party risk management because the expanding network created material risks around data security, fraud, and compliance and there were no registration or monitoring mechanisms in place.

Mastercard implemented MetricStream Third‑Party Risk Management on the MetricStream Integrated Risk Platform to register and consolidate fourth‑party data, automatically segment entities by risk factors, distribute and capture assessment questionnaires, and integrate with internal systems. The solution delivered comprehensive visibility, faster and more consistent risk assessments, prioritized, risk‑based decision making, automated workflows and dashboards (including heat maps), and more timely, actionable insights that improved efficiency and helped protect the payments ecosystem.

Mastercard