Architecting resilience across third-party ecosystems — NIS2, DORA, ISO 27001 vendor risk architecture strategy.