Certified Governance Risk and Compliance (CGRC) Practice Exam 2026 - Free CGRC Practice Questions and Study Guide

The Supplier Manager is typically responsible for the review and risk analysis of all contracts on a regular basis. This role entails managing relationships with suppliers and ensuring that contracts align with the organization’s strategic objectives and compliance requirements. The Supplier Manager assesses the risks associated with supplier engagements, including financial stability, compliance with regulatory frameworks, and alignment with service level agreements. This ongoing analysis is crucial for maintaining effective supplier partnerships and mitigating any potential risks that could impact the organization.

In contrast, the other roles relate to different functions within the organization. The IT Service Continuity Manager focuses on ensuring that IT services can continue in the event of disruptions, which involves planning and recovery strategies rather than contract management. The Service Catalogue Manager is responsible for maintaining the service catalogue, ensuring that services offered by the organization are accurately documented and communicated, but this doesn't involve contract reviews. The Configuration Manager manages the configuration items in the IT environment and ensures that they align with IT services, but their responsibilities do not encompass reviewing contracts regularly.