This message was posted by a user wishing to remain anonymous
As part of the vendor risk management program enhancement, I am working on defining risk levels for High, Medium, and Low findings. Would anyone mind sharing some examples of their definitions? Thanks in advance!