Remediation
      Back to home
      1. UpGuard Knowledge Base
      2. UpGuard Vendor Risk
      3. Remediation

      How to request remediation from a vendor

      Learn how UpGuard can help you request and manage your vendor remediation requests

      Written by Lisa Baldacchino

      If you identify risks that you want a vendor to address you can request remediation of risks from a vendor from within the UpGuard platform. You can request remediation from a vendor in a number of ways:

      Select request remediation from the remediation section in vendor risk

      Or selecting request remediation globally, or against a particular risk from the vendor's risk profile.

      You can also request a remediation on specific risks wherever they are shown throughout the platform, for example, questionnaire risks from the questionnaire detail page, or additional evidence document risks from from the additional evidence detail screen.

      If you don't already have a specific vendor selected, clicking Request remediation will take you to the first step in our vendor remediation workflow which lets you select the vendor you want to request remediation from. Select the vendor and then Next.

      Clicking Next will take you to the Select risks and assets type step. This step lets you add the risks and assets you want to associate with the remediation request. You can select from automated scanning risks, questionnaire risks and additional evidence risks.

      If you would like to remediate a risk at a specific domain, click on the corresponding row to expand it. This will display all the domains that have the risk where you can select the relevant domain. You can select the all domains for a given risk, or up to 50 individual domains.

      If you select an additional evidence risk the second step will give you the option to share the document that the risk was identified in with the vendor to help them assess and remediate the risk. For other types of risks, this step will be skipped.

      Lastly, you will need to select a vendor contact or enter their name and email address. You can also set a due date and reminder date or edit the title and message sent to the recipient(s) on this screen. When you’re ready, click Next.

      The final step is to review the request. Once you are happy with the request details select Submit request.

      Now that the request has been created, you’ll be able to track its progress in the remediation requests table. You can also add or remove items from a remediation request instead of canceling and creating a new request by editing/amending the remediation request.

       

      See also: