VendorRadar

VendorRadar is a web app (with optional mobile companion) that continuously monitors third-party vendor risk for mid-market companies that don’t have a dedicated risk team. Instead of annual spreadsheet reviews, it pulls signals from security questionnaires, SOC 2/ISO evidence, breach/news feeds, domain and certificate changes, and contract renewal dates to produce a simple, defensible risk score and an audit-ready trail. The product focuses on “good enough” risk analytics: clear thresholds, explainable scoring, and automated follow-ups to vendors when evidence expires. It also maps vendor risk to business impact by linking vendors to systems, data types (PII/PCI/PHI), and critical processes so leaders can prioritize remediation and offboarding. Realistically, it won’t replace enterprise GRC suites; it aims to be a lightweight, faster alternative for teams drowning in vendor reviews and compliance deadlines.