Vendor Risk Management

On-Site Vendor Control Assessments

Evaluate the Effectiveness of Third-Party Control Execution with Onsite Assessments

At times, asking questions is not enough: when vendors provide mission-critical functions, or have access to sensitive data, your organization may need to schedule on-site visits to make visual verification of compliance and contract conformance.

Manage on-site vendor risk controls assessments with ProcessUnity VRM.

Review on-site vendor risk management controls testing procedures.

Capture and review on-site vendor risk assessment results.


ProcessUnity Vendor Risk Management empowers your assessment teams with everything they need to conduct and document on-site vendor control assessments, including:

Control Libraries With Test Procedures

ProcessUnity VRM assigns the appropriate set of controls to your team depending on the services provided by the vendor. Test procedures can be prescribed to explain what needs to be done, what needs to be inspected, and how compliance should be measured, e.g., the temperature of a data center or the height of a server from the floor. These controls can also map to industry frameworks such as NIST or CobIT.

Results Compilation

ProcessUnity compiles vendor control assessment observations into reports that are also rolled into the vendor’s risk profile, informing that vendor’s overall risk health score.