Which vendor management tools should IT leaders consider implementing?

1.6k views3 Comments

Sort by:

CISO in Software4 years ago

We are looking at the ServiceNow GRC module, and I also like the look of OneTrust. You can manage your vendor risk through OneTrust and it can also help you fill in security questionnaires if you are a vendor for other organizations, because it stores a library of your responses.

Executive Coach / Global Chief Information Officer & CISO in Education4 years ago

There are a ton of tools out there for vendor management. Some of them are really expensive, and some of them aren’t good, but from a certification standpoint, if you're large enough and you can get in with one of these tools, it would be great. Productiv is one of those. It's not only doing what you might need where you need visibility, but it can also help you save money because it lets you see where licenses and costs are going. Some of these tools aren't just for security or review purposes, but better management's a beast.

2 1 Reply

no title4 years ago

We use OneTrust, but I would like Productiv.

Content you might like

Whilst there are high-quality, paid-for enterprise architecture applications in the market, with the increasing move to SaaS and dangers of vendor lock-in, it's prudent to have an alternative. Does anyone have experiences (good or bad) to share after moving from one of the market leaders to open source alternatives Essentials and/or Archi?

https://enterprise-architecture.org/products/essential-open-source/
https://www.archimatetool.com/

What do you do with unsolicited vendor gifts?

Keep it21%

I never accept them32%

Donate it12%

Depends on the dollar amount28%

Other (leave a comment)4%

View Results

What negotiation strategies have proven most effective when dealing with major software vendors in today’s uncertain market?

If you currently work in the healthcare industry, how do you currently inventory medical, IoT, and IoMT devices?

Fully manual inventory10%

Automated software system with full visibility49%

Software system with limited visibility16%

Mix of automated/manual inventory19%

Other (please comment below)4%

View Results

Has anyone successfully negotiated with a big hyperscaler partner to introduce a term into the contract that establishes service prices as public price at time of contract execution and holds those prices flat for the entire contract term? We're trying to think of ways to mitigate potential future cost increases if public prices change (due to tariffs or other unknown conditions) and dilute the impact of negotiated discounts.