VendorTripwire

VendorTripwire is a web app (with optional Slack/Teams alerts) that helps mid-market companies continuously monitor third-party/vendor risk without the heavy GRC overhead. Instead of annual questionnaires that go stale, it tracks a small set of high-signal indicators: contract renewal dates, SOC2/ISO certificate expirations, breach/news mentions, domain/email security posture, and critical dependency mapping (which systems/data each vendor touches). The app turns these signals into a simple “Tripwire” status per vendor and pushes actionable tasks: request updated reports, rotate keys, add DPA clauses, or escalate to legal/security. It includes lightweight workflows for vendor onboarding, risk acceptance, and evidence collection for audits. This is a combination traditional + AI app: AI summarizes vendor docs and flags missing controls, but the core value is disciplined tracking and reminders that teams actually follow.