1. TPRM Platform
  2. Client Knowledge Base
  3. Assess & Report
  4. Executive Summary Report

Review Remediation Guidance

Depending on your contract settings, you can view the Remediation Guidance page to review risk findings and CORL's recommendations for vendor risk remediation.

Depending on your contract settings, you may also have the option to customize the risk remediation plan and Provide Alternative Remediation Guidance.

  1. View the Executive Summary. For more information, see View the Executive Summary.
  2. Click Remediation Guidance
  3. Review the Risk Findings: 
    • Risk: Finding Number.
    • Level: Risk indicator. 
    • Description: Assessment finding. 
    • Guidance: CORL's recommendation for asking vendor to remediate finding. 
    • Due Date: CORL's recommended date for vendor to complete remediation. 
    • View: View the recommended remediation and optionally provide alternate guidance. 
  1. If you agree with CORL's recommendations for all Risk Findings, click Accept CORL Remediation Guidance
  2. If you do not agree with CORL's recommendations, View the recommended remediation and Provide Alternate Guidance
  3. Click Back to return to the Executive Summary.

Back to Top

Provide Alternate Remediation Guidance

If you do not agree with CORL's remediation guidance, you can provide alternate remediation guidance.

  • If the current Guidance = Remediation, providing alternate guidance will change this to No Remediation.
  • If the current Guidance = No Remediation, providing alternate guidance will change this to Remediation.

CORL will review your alternate remediation guidance prior to submitting the remediation plan to the vendor. 

  1. View the remediation and click Provide Alternate Guidance
  2. Select Reason(s) for providing alternate remediation guidance: 
    • Client Accepted Risk: You accept the risk.
    • Not a valid risk finding: You do not agree with the finding.
    • Do not agree with risk severity: You do not agree with the risk rating.
    • Have a compensating control: Vendor has a compensating control in place and you accept the risk.
    • Free text: Provide Reason(s) why you don't agree with the guidance.  
  1. Provide Additional Comments.
  2. Click Provide Alternate Guidance
  3. Click Submit Remediation Guidance. The Client Portal changes Guidance to Alternate Guidance.
  4. Repeat the steps for each finding where you want to provide additional guidance. 
  5. When you are finished, click Submit Alternate Remediation Guidance
  6. The system creates a ticket notifying CORL to review your changes to the remediation plan. 
  7. The Client Portal returns to the Executive Summary.

Back to Top

Was this article helpful?
0 out of 0 found this helpful

Articles in this section