Vendor Assessment

Vendor Assessment may be defined as the assessment or evaluation of a prospective or an existing vendor to determine if they can effectively meet the obligations and needs of the University, regarding a service or product.

Vendor Obligations

To assess or evaluate a prospective or existing vendor, the following may involve:

  1. Preparation of the Request For Information (RFI) and Request for Proposal (RFP) packages.
  2. Participating with Vendor in assessing their existing process and environment for compliance with University policies.

Assess Vendor

To assess Vendor for Iowa State University:

  1. Complete a Vendor assessment in ChangeGear.
  2. Select 'Change' from the triple bar menu at the up left corner.
  3. Click 'New' and use 'RFC new Software' template to request the assessment.Attach related security or assessment documents to the ChangeGear ticket.
  4. Place all sensitive documents tied to the Vendor request in Box under "ISU Vendor Review Process folder"
    Note: The Security team will notify you when you have access to this folder

After the assessment is complete:

  1. You will be notified when the assessment is ready
  2. Review and evaluate the assessment
  3. Close the ChangeGear record