Name |
The name of the vendor risk assessment. |
Description |
A more detailed explanation of the issue. |
Number |
Read-only field automatically populated with a unique
identification number. |
Applies to |
Select Vendor or Engagement. |
Engagement |
Select the engagement being assessed. This field is
visible only if you selected
Engagement from the
Applies to field. |
Repeating assessment |
The assessment used to create the current
assessment. |
Assessment template |
If you want to use one assessment template to create
questionnaires or document requests for this assessment,
select the one you want to use. If you want to use
multiple templates to create multiple questionnaires or
document requests for this assessment, leave this field
blank. |
Owner |
The owner of this assessment. |
State |
- Draft
- Submitted to vendor
- Closed
- Canceled
|
Risk rating |
The overall risk rating for this vendor.
- Critical
- High
- Moderate
- Low
- Minor
Note: The Risk rating is
determined by finding a risk rating scale range in which
the risk score falls. It defines how a minimum and
maximum range of assessment scores maps to a qualitative
risk score. |
Risk rating valid to |
The date the risk rating expires. This date must be later
than the Risk rating valid to date on
any associated questionnaires or document requests. |
Trigger by vendor tier |
Initiate this assessment when the vendor tier
changes. |
Watch list |
Add users to be notified when this record is
modified. |
Risk Scoring |
Computed risk rating |
Shows an average of the vendor risk area risk
ratings. |
Override risk rating |
Allows you to override the computed risk rating for the
vendor. When checked, any future changes made to the
assessment risk rating will affect only the computed risk
rating, not the risk rating. If the check box is selected
and then you deselect it, the computed risk rating is copied
back to the assessment. |
Overridden risk rating |
If you selected Override risk
rating, enter the new risk rating. |
Justification |
If you selected Override risk
rating, you must enter a reason for the
override. |
Assessment Schedule |
Planned duration (days) |
Estimated duration period of the assessment |
Planned start date |
Planned start date and time for work on the vendor risk
assessment. |
Planned end date |
Planned completion date and time fort work on the vendor
risk assessment. |
Created by |
Shows the user who created this record. |
Created |
Shows the date/time the record was created. |
Actual duration |
The amount time it took to complete the vendor risk
assessment. This field is calculated using the
Actual state date and
Actual end date. |
Actual start date |
Date and time that work on the vendor risk assessment
began. |
Actual end date |
Completion date and time for the vendor risk
assessment. |
Updated |
Shows the date/time when the record was last
updated. |
Questionnaire Schedule |
Planned duration (days) |
The amount of time given to the vendor for completing the
vendor risk assessment. This field is calculated using the
Planned state date and
Planned end date. |
Review duration (days) |
The review duration given to customer to review all the
questionnaires. |
Due date |
Deadline for vendor to answer all the
questionnaires. |
Completion date |
The actual date when vendor completed all the
questionnaires. |
Submitted to vendor |
The delivery date for vendor questionnaires. |
Resubmitted to vendor |
The date questionnaires are resent to the vendor. |
Responses expected by |
The date the vendor is expecting the responses. |
Notes and Comments |
Work notes |
Information about the vendor risk assessment. Work notes
are visible to users assigned to the issue. |
Additional comments (Customer visible) |
Public information about the vendor risk
assessment. |