Vendor Management Process

Community Resource Initiative (CRI) is committed to information security, privacy, and confidentiality. CRI’s vendor management policy has been established to document the confidentiality and security guidelines surrounding the procurement of third-party services. Prior to entering into any agreement with third-parties, CRI engages in a due diligence process, which may include conducting a cybersecurity and information security risk assessment of the third-party. Below are links to required forms the third-parties may need to complete.

Vendor Management Forms