What’s the difference between the Impact assessment and the security assessment?
- Impact Assessment measures how critical the vendor is to the specific client. It includes four weighted questions (e.g., handling sensitive data, business impact, SLA criticality). Weights are configurable per client.
- Security Assessment evaluates the vendor’s security posture. Users must choose one method:
- Structured questionnaire (45 questions, sent to vendor or completed internally).
Note: Currently, only one assessment template is available. Additional security assessment templates will be added in future releases. - Manual method (likelihood score + optional evidence upload).
- Structured questionnaire (45 questions, sent to vendor or completed internally).