0
21.0.2
Zurich, Yokohama Patch 6, Xanadu Patch 9
The Vendor Risk Management workspace is a single-pane view for third-party risk managers to view the overall risk posture of their third-party ecosystem. In the workspace, users can perform day-to-day activities such as performing and tracking risk assessments, risk issues, and tasks.
Risk managers can manage their entire program: risk domains, ratings from content providers, and internal and external risk assessments. Issues and tasks are managed centrally, so users can also define an action plan for remediation and ensure risks are mitigated quickly and efficiently.
The workspace includes:
- A home page that displays actionable insights and quick links
- A well-organized navigation menu that lists modules based on user needs
- An intuitive page layout for an exceptional user experience for practitioners, business users, and executives
- A holistic, 360-degree view of third parties with context-specific, actionable insights
The Vendor Risk Management Workspace includes the following features:
- A personalized homepage that enables risk managers to better manage their work
- A consolidated tasks landing page for managing all tasks assigned to the user and their groups
- 360-degree data visualization
- New
- The Vendor Risk Management Workspace has been updated to work with Smart Assessment Engine (SAE) facilitating, creating, editing, and viewing assessments using SAE.
- Changed
-
- Global TPRM changes
-
- Assessments and Third-party assessments are now renamed as External assessments.
- Tiering assessments are now renamed as Internal assessments.
- The Tier-level column is now renamed as Risk rating.
- The Tiering assessors column is now renamed as Respondents.
- The Owner field is now renamed as Assigned to on the internal assessment, external assessment, tiering assessment, and due diligence request forms.
- Changes made to the list view in Vendor Management Workspace
-
- The Assessment setup section has been added. From this section, you can create assessment templates, Smart Assessment questionnaire templates, and issue generation rules.
- The Questionnaire requests section has been added.
- The Tiering assessments and Inherent risk questionnaires (IRQ) are combined in the Internal assessments section.
- Changes made to internal assessment pages
-
- Tier-level scales are renamed as Scales.
- Tiering assessment schedule and Schedules are combined and renamed as Assessment schedule.
- Changes made to assessment related lists
-
- Assessment instances is renamed as Questionnaire requests.
- Questionnaires is renamed as Questionnaire templates.
- Document requests is renamed as Document templates.
- Fourth-party questionnaires is renamed as Fourth-party templates.
- Repeating assessments is renamed as Assessment scheduling.
-
- The following plugins must be installed and active:
- GRC: Vendor Risk Management
- Permissions and roles:
- Role required to install the app: System admin (admin)