Vendors can create significant risk for organizations that rely on them. Organizations need to track, understand and manage that risk as part of an effective information security management program. Trustero’s new vendor management feature enables organizations to effectively manage vendor risk while complying with information security compliance frameworks like ISO 27001, NIST CSF, SOC 2 and PCI DSS.
Trustero will help you track the vendor’s risk tier, attestations (e.g., SOC 2 reports) and related risks. It will warn when attestations are out of date and need to be updated.
To try it out, navigate to Content > Vendors in the navigation bar.