Manage vendor risk as your business grows.
Improve vendor relationships and remove the burden put on internal teams with simple and automated third-party risk management.
Vendor Questionnaires
Create a more efficient and less manual risk-based approach to vendor management by defining actions for specific questions, which may spawn multiple workflows to ensure issues are addressed.
Business Impact Questionnaires
A more efficient way to gather information, documentation or opinions, questionnaires are designed so that responses lead to cascading questions. A weighing scale in the questionnaire applies a risk score.
Vendor-Specific Reporting
Assess and compare vendors by individual responses and risk scores over time and easily report insights to management.
Cheatsheet: Manage Third-Party Information
Understand what you need to collect and manage vendor risk information
Technical Capabilities
- Customizable questionnaires with weighting and scoring
- Customizable reports and dashboards
- Actionable questionnaire responses
GRC Expertise
- Implementation and support services to set up and execute questionnaires quickly
- Professionals to help run an effective vendor assessment program
- Recognition as the industry-leading solution for compliance and third-party risk management
Reporting and Insights
- Questionnaire status and management
- Risk rating of vendors based on scored questionnaires

Ebooks

Guides

Webinars
July 7, 2020
Top Initiatives for Infosec Teams to Consider in Implementing Business Continuity & Resiliency
Watch Webinar
March 25, 2019
Vendor Risk Management: What your organization can and cannot do under the GDPR
Watch Webinar
Articles
April 30, 2020
The Difference Between Vulnerability Assessment and Vulnerability Management
Read Article
February 13, 2020
CCPA Exemptions: The California Consumer Privacy Act and the Gramm-Leach-Bliley Act
Read Article
August 7, 2018
How Big Data Analysis Helps Compliance & Business Leaders Make Better Decisions
Read Article
October 31, 2017
Compliance Offers Internal Stakeholder Value: Automation as Transmogrifier
Read Article
October 26, 2017
Risk Management Automation and Customer Engagement: Rupees in the Grass
Read Article
October 10, 2017
7 Challenges of Being an IT Compliance Manager: Automation Makes You an American Ninja Warrior
Read Article
October 5, 2017
Cybersecurity Awareness Training Game to Celebrate Cybersecurity Awareness Month
Read Article
September 12, 2017
Protecting Your Corporate Website as an Enterprise Risk Management Strategy
Read Article
June 8, 2017
Cloud Security Compliance: 11 Steps on the Stairway to Cloud Services Heaven
Read Article
June 2, 2017
Legal Liability in Information Security: How Compliance Can Be Used to Protect Assets
Read Article
November 17, 2016
Webinar Recording Now Available – 6 Time Saving Steps to Simplify Your GRC Strategy
Read Article
November 1, 2016
How to Conduct a Compliance Self-Assessment – an Excerpt from our GRC Software Buyers’ Guide
Read Article
October 24, 2016
When to Implement a GRC Tool? – An Excerpt from Reciprocity’s GRC Software Buyer’s Guide
Read Article
October 19, 2016
Smarter Compliance, Less Risk – an Excerpt from Reciprocity’s GRC Software Buyer’s Guide
Read Article
October 10, 2016
What is GRC – an Excerpt from Reciprocity’s GRC Software Buyer’s Guide
Read Article
August 16, 2016
ZenGRC v2.4 Release Features New Audit and Evidence Request Dashboards, and More
Read Article
August 2, 2016
“Competent Compliance” Webinar Recording Now Available, Learn How to Move Beyond Spreadsheets
Read Article
July 26, 2016
Join Our Live Webinar – Competent Compliance: 3 Ways to Move Beyond Spreadsheets
Read Article
June 30, 2016
June News Round-Up: More Data Breach News, Crypto Wars 2.0, and Acer Hack
Read Article
June 10, 2016
ZenGRC v2.2 Release Features New System of Record Dashboard, Tree View Updates
Read Article
May 11, 2016
ZenGRC v2.1 Release Features Improved Audit Capabilities, Simplified Customer Support
Read Article
February 25, 2016
How to Tell if it is Time to Start a Compliance Program [Infographic]
Read Article
September 16, 2015
A Perfect Nightmare: Compliance and Record Keeping Disaster Waiting to Happen
Read Article
July 14, 2015
Changes Are Coming For The Trust Services Principles And Criteria – Are You Ready?
Read Article
April 27, 2015
Selecting the Right Service Organization Control Report for Outsourced Operations
Read Article
FAQs

Infographics
Third-Party Risk related Use Cases
Learn how we can fit into your business.
Schedule a demo to learn how we can help guide your organization to confidence in infosec risk and compliance.