Relationships and Assessments
Assessment Phases
Assessment Phases. 1. Overview & Purpose. The VISO TRUST assessment lifecycle moves through distinct phases, from initial creation to completion. Understanding each phase enables you to monitor asses…
Risk Review and Remediation
How does "Risk Review" at the end of an assessment work? Risk review is a lightweight workflow at the end of every completed assessment that formalizes risk acceptance and remediation activities. Onc…
Business Cases and Controls
Business Case Selection and Controls in Scope. Purpose of Business Case Selection. Business Case selection determines which exposures are introduced by a third party and therefore which controls must…
Data Types and Impact
Data Type Selections and Impact Assessment. Purpose of Data Type Selection. Data Type selections are used by the system to gauge impact , not exposure. While Business Case selection determines how a…
Questionnaires
Represent your organization’s unique security program in VISO TRUST. With full control to design assessments around your individualized compliance and risk priorities, questionnaires make it easy to…
Request vendor response to risk advisory
Requests for vendor response empowers security teams to quickly gather information from vendors impacted by major security advisories (e.g., supply chain compromises, zero-day vulnerabilities). Creat…
Configuring assessment defaults
Configuring assessment defaults. You can now set assessment defaults at both the organization level (applies globally) and the relationship level (applies to individual relationships). These settings…
VISO TRUST Agentic chat
The chat-based agent is a powerful feature designed to help you manage your program through natural, conversational interactions. Instead of navigating multiple menus or dashboards, you can simply ch…
Follow-up questionnaires
If controls are unvalidated or questions are unanswered after assessment review, you have the power to initiate a follow-up to gather more information directly from the vendor. How to Automate Follow…
Continuous Monitoring
Overview. Continuous Monitoring in VISO TRUST provides real-time oversight of your vendors’ security posture between formal assessments. Instead of relying only on periodic questionnaires or annual r…
Vendor discovery
Overview. Vendor discovery introduces an intelligent way to identify and act on vendors discovered through subservicer analysis. This new tool empowers you to uncover vendors automatically surfaced f…
Understanding Subscribers and Default Subscribers
Subscribers are a powerful way to keep key stakeholders in the loop about third-party risk relationships—without needing to assign them as Business Owners. Whether you're part of a risk, security, or…
Sub-Processor Collection
New: Sub-Processor Collection in VISO TRUST. To give you deeper insight into your vendor ecosystem, VISO TRUST now collects and displays sub-processor information for vendors that fall within your pr…
Configuring relationship context
Configuring relationship context. The context of a relationship defines the threat surface of the partnership with your third party. By selecting the context, you outline the circumstances for workin…
Vendor tiers
The Vendor Tiers feature in VISO TRUST simplifies third-party risk management by enabling you to group vendors into tiers. This organizational structure enhances prioritization, oversight, and tailor…
VISO TRUST Risk Assessment Process
VISO TRUST - Third Party Risk Assessment & Data Handling Process. Platform Overview. VISO TRUST is a leading Third Party Risk Management (TPRM) platform that transforms how modern enterprises handle…
Lifecycle Management for Relationships
Lifecycle Management for Relationships. Overview. Lifecycle management is designed to streamline and automate the process of managing relationships with third parties. This feature ensures that you a…
