Vendor Risk Management Policy

Subscriber Content
Screenshot of the first page of Vendor Risk Management Policy-page-001

This sample policy contains guidelines and procedures employees should follow when overseeing third-party entities.

This policy applies to all employees, contractors, vendors, business partners and anyone who acts as an agent of the company or any of its subsidiaries and is involved with the design, construction, maintenance, use, connection or removal of the company information, systems and networks. The requirements of this policy must be included in all contract negotiations that will or could affect the information security posture of the company.


Topics
Audit Committee & Board
Business Continuity Management
Supply Chain
Vendor Management
Laws & Regulations
Accounting/Finance
Document Retention
Compliance

Related Resources

Checklists & Questionnaires

Vendor Assessment Questionnaire

Audit Programs

IT Vendor Management Audit Work Program

Methodologies & Models

Vendor Management Capability Maturity Model (CMM)

Free Trial

Sign up for a free, no-obligation trial to start exploring our timesaving, valuable resources.

Let's Do It