What is the scope of the TPRM feature?
- Vendor management structure
- Sub-account level – Vendor Risk: Manage client-specific vendors independently.
- Account level – Shared Vendors: Manage vendors centrally at the service provider level and link them to multiple clients.
- Vendor workspace
- Vendor profile with details, attachments, and internal notes.
- Impact assessment: A short questionnaire evaluating how critical the vendor is to the client's operations.
- Security assessment: Completed via either a structured questionnaire or manual likelihood entry.
- Final risk rating: Automatically calculated by combining Impact × Likelihood.
- Vendor report: Exportable summary including scores, evidence, and notes.
- Portfolio overview
- Risk heatmaps: Visual matrix showing each vendor’s risk position.
- Vendor list: Centralized view of all vendors with filtering and assessment status.