1. TPRM Platform
  2. Client Knowledge Base
  3. Assessments
  4. Track Assessment Status

Understanding the CORL Assessment Status

Use this article to understand the status of an assessment (sometimes referred to as Master Step).

Inherent Risk Questionnaire

  • Inherent Risk Questionnaire: Awaiting client response (IRQ: Client)
  • Inherent Risk Questionnaire: Processing client response (IRQ: Processing)
  • Inherent Risk Questionnaire: Preparing Summary (IRQ: Ready)

Pre-Assessment

Client requests pre-assessment:

  • Pre-Assessment: Preparing Summary (Pre: Preparing): CORL is preparing the pre-assessment report and will upload the completed report to the client’s external SharePoint site.

Assessments

Client submits new assessment request:

  • Scoping Questionnaire: Awaiting vendor response (Scope: Vendor): CORL will issue the scoping questionnaire and/or clarification request to the vendor.
  • Scoping Questionnaire: Processing vendor response (Scope: Processing): CORL will analyze the completed scoping questionnaire submitted by the vendor.  
  • Security Questionnaire: Awaiting vendor response (Sec: Vendor): CORL will issue the recommended questionnaire to the vendor.
  • Assessment Results: Preparing Summary (Asmt: Preparing): CORL generates an Executive Summary based on the vendor responses and/or internal review to the questionnaire.
  • Security Cert Evidence: Awaiting vendor response (Cert: Vendor): CORL will obtain vendor security certification (if applicable).
  • Security Questionnaire: Processing vendor response (Sec: Processing): CORL will review the security certification and/or questionnaire to determine if requirements are met.
  • NDA: Awaiting vendor response (NDA: Vendor): CORL is working with vendor to execute final NDA.
  • Gap Validation: Awaiting vendor response (Gap: Vendor): Vendor to review and provide clarification on original assessment responses.
  • Gap Validation: Processing vendor response (Gap: Processing): CORL will analyze vendor questionnaire updates and/or clarifications.

Remediation

(Optional) The vendor completes remediation activities at the request of the client:

  • Remediation: Awaiting vendor response (Rem: Vendor): CORL will initiate Remediation and await vendor response and evidence.
  • Remediation: Processing vendor response (Rem: Processing): CORL will analyze vendor Remediation responses and evidence.
  • Remediation: Preparing Summary (Rem: Preparing): CORL will generate an Executive Summary based on the vendor responses and/or internal review to the questionnaire.
  • Assessment Results: Ready for Review (Asmt: Ready): Client to provide final direction on completed vendor assessment.
  • Complete: No action required (Complete): CORL completed their review of vendor assessment and no action is required.
  • Complete: Terminated (Terminated): CORL terminated their review of the vendor assessment based on the client’s direction and no action is required.
  • Complete: Awaiting guidance (Complete): Client to advise if re-assessment is needed.
Was this article helpful?
0 out of 0 found this helpful

Articles in this section