Vendor on-site visits can be a useful tool as part of initial due diligence or ongoing monitoring. Each on-site visit will be unique depending on the product or service provided and the controls your organization needs to verify.
From a checklist ...
How awesome! I needed that too, thank you Michelle.
In the wake of the Silicon Valley Bank ("SVB") collapse, we are curious to see how others in the industry review financial/counterparty risk of their vendors as part of their vendor program (for banks or any other types of vendors). Are certain ...
Happy to share, a little context. We have vendor categories that we exclude from TPRM completely by policy (like utilities, municipalities) and vendor categories that we exempt from our standard due diligence requirements or have separate and distinct ...
I would love to see your matrix, if that's something you can share. Please email me directly if that works.
Thanks so much!
Cheryl Turner, CRVPM II