Search the Third-Party Risk Management Community

Popular Search Topics: SOC Documents, BCP, Another

Latest Topics

Latest Discussions

  • Let's look at this from a Knowledge-Centric perspective. Due diligence among other things should establish your expectations about the technical expertise including cyber security, domain expertise, org culture including knowledge sharing, ...

  • We are actually currently vetting them for a new product we are considering. They answered our questionnaire and sent several documents, including financials, BCP Summary, SOC2, Pen testing Summary, Business License and other items. ...

  • You may need a better contact at TU. We can gather: COI, Incident Response Policy, Cyber Security, SSAE, GAP letter BC Plan, Disaster test results, Financials, and Information Security.

  • One should ask if the vendor has a SOC 2, Type II report and if yes, obtain it. The report would provide information on the internal controls according to the AICPA Trust Principles and would indicate Complementary End User Controls the one's ...

  • RE: Oversight Requirements

    This message was posted by a user wishing to remain anonymous What information are you able to obtain from Transunion? I haven't been able to gather much from them - just a general "Data Security" document that states WHAT they have in place ...

Getting Involved in the Community

Most Popular Communities


Topic Communities

Join a community dedicated to an area of third-party risk including contracts, infosec, risk assessments, policies, and more.


Special Interest Communities

Network with others who are running very mature or complex programs at their organizations that require a unique way of thinking. 

Product Communities

Meet, connect, and network with other users using the same third-party risk tool as you - get support and share new ideas and best practices.


Resources Library

Download the latest guides, infographics, samples, whitepapers, checklists, and more that can help guide you through best practices on third party risk.

Visit Resources

Live Webinars

Register and join live webinars to learn current trends and best practices from knowledgeable experts. Free CPE eligible webinars.

Register Now

Venminder Academy

Make sure to sign up to our notification list and be one of the first to know about our self-paced eLearning courses.

Get Notified

Explore the Venminder Platform