Skip to main content
Security Performance Management
Continuous Monitoring
Vendor Risk Management
Trust Management Hub
Cyber Insurance
National Cybersecurity

Vendor Risk Management & Trust Management Hub User Roles

Ingrid

In addition to standard account roles for all other applications, a user can also have a role for Trust Management Hub and Vendor Risk Management.

Manage Trust Management Hub users from the User Management page.

To assign Vendor Risk Management roles, you will need to do so within the Vendor Risk Management app. This is also true for the Trust Management Hub roles, which will need to be assigned via the Trust Management Hub app.

 

This role also provides access to the Vendor Risk Management application.

TMH/VRM Admin

Admin have full administrative access to the Bitsight account, including adding, modifying, and deleting users, insights into product usage of various users, and full access to manage all aspects of the Trust Management Hub and Vendor Risk Management applications.

In VRM, these users can manage your assessment setup.

Application: TMH & VRM

Slug Name: vrm_admin

VRM Only Internal Business User

These users can manage every aspect of vendors where they are designated as internal contacts, except for vendor tiering.

Application: VRM

Slug Name: vrm_internal_business_user

VRM/TMH Operations

For VRM, these users can add, invite, or remove vendors, and manage those vendor profiles.

For TMH, provides access and manage permissions for most aspects of the Trust Management Hub application.

Application: TMH & VRM

Slug Name: vrm_operations

TMH Access Only Operations

Provides access and manage permissions for most aspects of the Trust Management Hub application. Users with the 'TMH Access Only Operations' role can manage all documents and customer connections.

Application: TMH

Slug Name: trust_management_sales_operations

TMH Access Only Sales

Use this role to scale cross-team collaboration between Sales and GRC.

  • View the Dashboard and Documents pages, but no actions are permitted.
  • View the Connections page. Send out shares or cancel pending shares to other companies.
  • Managing existing connections and incoming connections is not permitted.

Application: TMH

Slug Name: trust_management_sales

VRM/TMH View Only

View and access data. No actions are permitted.

Application: TMH & VRM

Slug Name: vrm_view_only

Vulnerability Response Outreach

Send questionnaires from the Continuous Monitoring application.

Application: Continous Monitoring

Slug Name: vulnerability_response_outreach

  • January 28, 2025: AddedVulnerability Response Outreach role.
  • January 6, 2025: Added VRM Only Internal Business User role.
  • November 25, 2024: Corrected View Only permissions.
Was this article helpful?
1 out of 2 found this helpful
Return to top

Related articles

Feedback

0 comments

Please sign in to leave a comment.