For the third year in a row, we’re excited to announce that OneTrust has been recognized in the 2021 Gartner® Critical Capabilities for IT Vendor Risk Management Tools research report. The report evaluates the capabilities of 17 IT Vendor Risk Management (VRM) software providers and delivers product scores on key capabilities across “critical differentiating usage scenarios.” Gartner has positioned OneTrust with the highest score in VRM Solution and Managed Support Services use case.  

This report comes on the heels of OneTrust being named a Leader in the 2021 Gartner® Magic Quadrant™ for IT Vendor Risk Management Tools. 

Download the report: 2021 Gartner Critical Capabilities for IT Vendor Risk Management Tools 

Download the report: 2021 Gartner Magic Quadrant for IT Vendor Risk Management Tools 

Gartner’s Critical Capabilities research examines the ability of IT Vendor Risk Management Tools to address three use cases that are based on the delivery requirements most often expressed by Gartner clients including “VRM Solution,” “VRM Solution and Managed Support Services,” and “VRM Solution and Vendor Risk Assessment Data.” OneTrust was recognized based on various capabilities and Use Cases and received scores of:  

  • 4.06 out of 5 for Vendor Risk Management Solution 
  • 4.05 out of 5 for VRM Solution and Managed Support Services 
  • 4.06 out of 5 for VRM Solution and Vendor Risk Assessment Data 

Why OneTrust for Third-Party Risk? 

The requirements of a successful third-party risk program vary widely based many different factors, such as industry, company size, regulatory environment, location, and more. And yet, the primary goal that every organization seeks is the same: reduce third-party risk.  

With OneTrust’s Third-Party Risk solutions, organizations can streamline and automate both strategic and IT vendor risks for more efficient and effective security, compliance, and risk management operations. Specifically, OneTrust Vendorpedia solutions enable users to manage their entire vendor risk lifecycle, enabling quicker assessments, streamlining risk mitigation, maintaining regular oversight, monitoring, and in-depth reporting, from onboarding to offboarding. The platform consists of the following technologies to empower you and your vendors.

Third-Party Risk Management software enables you to create automation workflows to manage every vendor engagement, from onboarding to offboarding.  

Third-Party Risk Exchange software automates vendor risk analysis and control identification by bringing together a global community of organizations dedicated to sharing security, privacy, and compliance information.  

Third-Party Risk Monitoring capabilities enable organizations to leverage pre-built plugins to critical information sources, alerting them when new risks and compliance issues arise.  

Questionnaire Response Automation software helps organizations automatically answer incoming security questionnaires.  

OneTrust Vendorpedia Third-Party Risk solutions are fully integrated into the OneTrust suite of privacy, security, and governance solutions. To learn more, download the 2021 Gartner Critical Capabilities for IT Vendor Risk Management Tools or request a demo today.  

Further reading:  

and Why 

Next steps: 

Follow OneTrust on LinkedIn, Twitter, or YouTube for the latest on OneTrust Vendorpedia and third-party risk management.  

Gartner ®, Critical Capabilities for IT Vendor Risk Management, Joanne Spencer, Ed Weinstein, August 31, 2021  

Gartner does not endorse any vendor, product or service depicted in its research publications, and does not advise technology users to select only those vendors with the highest ratings or other designation. Gartner research publications consist of the opinions of Gartner’s research organization and should not be construed as statements of fact. Gartner disclaims all warranties, expressed or implied, with respect to this research, including any warranties of merchantability or fitness for a particular purpose. 

Gartner and Magic Quadrant are registered trademarks of Gartner, Inc. and/or its affiliates in the U.S. and internationally and is used herein with permission. All rights reserved