Top reasons to pursue a career in risk management blog 2
Resources

How to Perform Proper Vendor Management

May 30, 2025 · 1.1 MB Download

Resource

available

An effective vendor management program is critical for any organization that relies on third-party services to achieve its business objectives. The purpose of this document is to highlight the critical elements of a vendor management process and, when applicable, discuss how the SOC 2® report aligns with that process.

The intended audiences for this document are:

  1. Organizations looking to implement (or improve) a vendor management program

  2. Auditors and other third-party program assessors who are reviewing controls and processes around a vendor management program

This paper explores the following key components of a successful vendor management program:

  • Governance

  • Policy

  • Third-party risk assessment reviews

  • Due diligence procedures

  • Evaluation of vendor controls

  • Ongoing monitoring

Download the How to perform proper vendor management and third-party risk reviews

File name: how-to-perform-proper-vendor-management-and-third-party-risk-reviews.pdf

What did you think of this?

Every bit of feedback you provide will help us improve your experience

What did you think of this?

Every bit of feedback you provide will help us improve your experience

Mentioned in this article

Topics

Audit & Assurance

Subtopics

SOC 2® - SOC for Service Organizations: Trust Services Criteria
Manage preferences

Related content

    This site is brought to you by the Association of International Certified Professional Accountants, the global voice of the accounting and finance profession, founded by the American Institute of CPAs and The Chartered Institute of Management Accountants.

    About|Terms & Conditions|Accessibility|Privacy Policy|Contact|Help|Site Map

    CA Do Not Sell or Share My Personal Information

    }