Generative AI is transforming the supply chain, rendering traditional "point-in-time" vendor questionnaires obsolete. Security leaders face a growing dilemma: how to assess dynamic AI risks without becoming a bottleneck to business innovation. Join Rakesh Venugopal, an ISACA Subject Matter Expert (SME) Reviewer for the Advanced in AI Security Management course and seasoned GRC leader, as he presents a modernized approach to vendor oversight. Drawing on his experience managing a portfolio of over 2000 vendors and implementing risk-based prioritization frameworks, Rakesh will demonstrate how to pivot from static compliance checklists to a scalable "AI Maturity" model.