Skip to main content
Security Performance Management
Continuous Monitoring
Vendor Risk Management
Trust Management Hub
Cyber Insurance
National Cybersecurity

Vendor Profile: Security Profile

Ingrid

The Security Profile page in the Vendor Risk Management application [menu-vendor-profile.png Vendor Profile ➔ Security Profile] contains questionnaires, certifications, insurance policies, external audits, and assessments provided by the vendor regardless of whether they were required or not. Use this page to check the latest versions of security reviews.

Multi-profiles

Actions

Request Additional Profiles

Set up multi-profiles.

Instructions: Instruct the vendor to reach out to Bitsight Support to have additional profiles created.

Search by Artifact Name

Instructions: Use the search bar at the top-left.

Stop Communications with the Vendor

You will no longer be able to communicate with this vendor, but it will remain in your Monitored Vendors list.

Instructions: Select ActionsRemove.

Switch Between Profiles

Instructions: Use the top navigation bar.

Each profile operates independently, meaning that all settings, preferences, and documentation are unique to that profile. For example, one profile may require a specific vendor questionnaire, while another might focus on different audits or certifications. This setup ensures that profiles can be customized to meet the distinct needs of various parts of your organization.

Artifacts

The artifacts included in one or more of your requirements are labeled as “Required.”

Artifacts:

Questionnaires

Questionnaires show their progress and score, which represents a quantified view of how the company answered the questionnaire.

Select a questionnaire to view the questionnaire details.

Insurances

Select an artifact to view the following details:

Header

Artifact details.

Name
The name of the artifact.
Type
The type of artifact (Insurances).
Status

The status of the artifact.

  • Completed
  • Expired
Insurance Provider
The insurance provider.
Last Modified by
The user who last modified this artifact.
Expires on
The date when the artifact expires.
Last Updated on
The date when the artifact was last updated.

Documents

Download the pen test (.pdf).

Comments

Comments from the vendor.

Certifications

The certifications display the certificate’s expiration date. Hover over the info.png Info icon to see the date when the artifact was achieved.

Select an artifact to view the following details:

Header

Artifact details.

Name
The name of the artifact.
Type
The type of artifact (Certifications).
Status

The status of the artifact.

  • Completed
  • Expired
Certification Scope
The certification scope.
Last Modified by
The user who last modified this artifact.
Achieved on
The date when the artifact was achieved.
Last Updated on
The date when the artifact was last updated.
Expires on
The date when the artifact expires.

Documents

Download the pen test (.pdf).

Details

Certificate details.

Comments

Comments from the vendor.

External Audits & Assessments

The artifacts display the expiration date. Hover over the info.png Info icon to see the date when the artifact was achieved.

Select an artifact to view the following details:

Header

Artifact details.

Name
The name of the artifact.
Type
The type of artifact (External Audits & Assessments).
Status

The status of the artifact.

  • Completed
  • Expired
Auditing Body
The auditing body.
Last Modified by
The user who last modified this artifact.
Achieved on
The date when this artifact was achieved.
Last Updated on
The date when the artifact was last updated.

Documents

Download the communication plan. (.pdf).

Comments

Comments from the vendor.

  • February 4, 2025: Switch between profiles instructions.
  • July 15, 2024: Request multiple profiles.
  • January 10, 2024: Published.

Related articles

Feedback

0 comments

Please sign in to leave a comment.