Vendor tiering allows you to classify your vendors based on the inherent risk they pose to your organization, and adjust the level of assessment you perform on each vendor as a result.
For example, you may wish to classify a vendor that handles internal company communication as Tier 1, and a vendor that only stores publicly accessible information as Tier 3. When assessing each vendor, you could then elect to send detailed questionnaires to Tier 1 vendors, whilst assessing just based on web risks for Tier 3 vendors.
Configuring available tiers
By default, we make three tiers available for classifying your vendors - Tier 1, Tier 2, and Tier 3. If you wish to change the names of these tiers, or add more tiers, you can do so via the Settings screen. In the below example, a fourth tier has been added and the default names have been changed.
Assigning tiers to vendors
There are numerous ways you can assign tiers to the vendors you are monitoring.
On the Vendors screen, by clicking the "+" button next to a vendor in the Tier column.
On the Vendors screen, by selecting multiple vendors then assigning a tier to all of them.
On the Vendor Summary, by clicking on the "+" button next to the Vendor Tier in the summary card.
On any vendor-specific screen, by clicking the tier icon in the page header.
Sorting and filtering by tier
Once you have assigned tiers to vendors, you can use them for sorting and filtering.
To sort the Vendors list by tier, click on the "Tier" column heading.
To filter the Vendors list by tier, click the "Tier Breakdown" button to open a panel that will allow you to select the tiers to filter by, pictured below:
Filtering by tier is also supported in the Filters panel available on the Vendors screen, and can be used in conjunction with any other available filter.