VRM importance and how it's linked to NIST CSF

This is required by coming days as of review and template, Final is required by Saturday Hi, We are Security & Privacy department, part of corporate in telco business Why I need this? we are planning to use NIST CSF as our reference for upcoming projects, and ensure our corporate security is aligned with NIST standards. this will take some time to develop, and do the assessment, but i need something to use, in clarifying to my manager, why this project (VRM) and other projects are important to be implemented (thus i got some budget for executing it) so, as part of upcoming weekly meeting, i will put those 2 slides part of the agenda in order to use for clarifying the purpose and objective of the project means, there is no special presentation (or meeting for this specific subject) where i will include those 2 slides into I need to show in a slide, main pullet-points about importance and need for having Vendor Risk Management. Points as 1- What does it mean, as business value from information security perspective 2- What are the risks could be due to missing VRM 3- Could it be linked to an attacks or leakage happened to other organizations, due to weak or missing VRM 4- Having VRM values, benefits 5- challenges another slide, showing NIST cybersecurity framework and where does VRM fits into it Hopping this engagement works great, I will ensure future engagements, and with better timing frames