Feature availability: This article discusses Third Party Risk Management features, which may require an upgrade or add-on. Refer to Vanta Plans and Pricing for details.
In vendor management and security review processes, filters help teams quickly surface the most relevant data, such as high-risk vendors, overdue reviews, or vendors with access to sensitive information.
Custom filters go a step further, enabling organizations to tailor views to their unique risk profile, compliance requirements, or operational priorities. This not only saves time but also ensures that decision-makers focus on the vendors and risks that matter most, improving both oversight and responsiveness.
Available Filters
From the Vendors page, you can filter by:
Security owner: The user responsible for performing the security review. This user will receive notifications related to the vendor review process.
Business owner: This individual is responsible for day-to-day management of the tool. E.g., their team utilizes the tools. This person is not responsible for security reviews, and will not receive notifications.
Category: Vendor category
Inherent risk score: A measure of the level of risk a vendor or process poses before any mitigating controls are applied. It reflects factors such as data sensitivity, access level, and business criticality, providing a baseline for determining how much oversight and security review is required.
Residual Risk Score: Represents the amount of risk that remains after security controls, safeguards, and mitigation measures have been applied.
Data agreements: Specific data agreements requested during the review process
Custom Filters
Custom filters can be utilized from the custom fields you have added to your Settings.
Select the metadata field.
Select the option to filter by.
