This message was posted by a user wishing to remain anonymous
In our Vendor Management policy, our definition of "vendor" specifically excludes vendors that we cannot influence (such as utilities), that are immaterial to our organization (such as coffee delivery), that require independence (such as external auditors or legal counsel), etc.
It might be overkill, but with few exceptions, all of our vendors have contracts and are risk rated.
If this isn't the type of answer you're looking for, please do elaborate . . .
Original Message:
Sent: 05-22-2023 03:16 PM
From: Anonymous Member
Subject: Non-Contract Vendors
This message was posted by a user wishing to remain anonymous
How does your organization handle non-contract vendors or what advice would you have in these types of relationships.
Currently, we have vendors recorded in our vendor list which we consider non-contract vendors. These vendors aren't department specific and can come from IS, Facilities, Marketing, etc. I guess I'm trying to find out how to define and differentiate these vendor relationships in contrast to the rest of our vendor list; understand if these vendors require the full scope of a vendor classification and risk assessment; or eliminate these relationships from our vendor records altogether. Any advice would be greatly appreciate and I can elaborate further if needed. Thank you!