Getting Started with Vendor Risk: Part 4

Report, automate processes, and set up notifications

This guide discusses functionality from across product tiers and may reference functionality not available on your account.

Step 1: Report

Find the reports relevant to your team and have them automatically delivered at a set cadence. Three reports we suggest:

  • Board summary report: combines Breach Risk and Vendor Risk insights to give board members a general understanding of your security posture.
  • Executive summary report: gives executives a birds eye view of your current vendor landscape and how risk is distributed.
  • Vendor summary report: a per-vendor report when you need a drilled-down look into one particular vendor. 

Step 2: Automate

Adding vendor details: create automations that leverage vendor relationship questionnaire answers to automatically apply tiers, labels, portfolios and custom attributes.

Step 3: Set up notifications

Admins can create custom notifications for their users. Each user turns on the notifications they want. A few notifications we recommend:

  • Incidents and news related to specific industries (e.g., portfolios).
  • A vendor’s score drops below a key threshold.
  • A vendor’s score drops below the accepted level for their tier.
  • A drop of ‘x’ points for any vendor in a given day.

Step 4: Integrations

Use our pre-built integrations to connect UpGuard to where your team works (or vice versa).