Vendor security ratings cannot be adjusted without modifying the criteria for evaluating a vendor’s security posture. This functionality isn’t available on all security ratings solutions, but it's offered on the UpGuard platform.

These could include: Duplicate risk discoveries - Duplicate or related security risks could have an excessively negative impact on a vendor’s security posture.

Note: All decisions to waive vendor security risks should be conducted through a Vendor Risk Management framework trusted by information security professionals and supportive of regulatory compliance. This will remove all bias from risk waiver decisions, ensuring vendor risk ratings are always adjusted toward greater accuracy.

Related Articles