The Information Technology Asset Manager should maintain information on each vendor on a separate Approved IT Vendor Data Worksheet Template; this should be kept with the vendor’s file. Information Technology Managers should review the results of the security check and determine the level of vendor access to sensitive information. This security level should be recorded on ITAM103-3 APPROVED IT VENDOR DATA SHEET.
Quality Management should periodically reevaluate Information Technology vendors (to be done at least annually), according to the company’s vendor performance criteria. In the case of critical assets, Quality Management should periodically request a vendor inspection.
Approved IT Vendor Data Worksheet Template Details