// COMPLIANCE FRAMEWORK

SIG VENDOR RISK

Standardized Information Gathering Questionnaire

SIG is the industry standard for third-party risk assessment. SIG Lite provides streamlined assessment, SIG Core delivers comprehensive evaluation of 18 risk domains.

See Plans → Explore QFX →
// REQUIREMENTS

WHAT SIG REQUIRES FOR THIRD-PARTY RISK

01

SIG Lite: 200+ questions across key security domains

02

SIG Core: 800+ questions covering 18 risk domains

03

Annual assessment cycle with evidence collection

04

Shared Assessments membership enables assessment sharing

// VERISQ SOLUTION

HOW VERISQ AI SATISFIES SIG

📋

QFX + SIG Mapping

QFX maps to SIG Lite and SIG Core domains.

🛡️

Automated Pre-Screen

LiveThreat scorecards pre-screen before sending SIG.

📊

Risk Tracking

Track assessment completion and remediation.

Efficiency

Pre-populate answers from automated discovery.

// INDUSTRIES

SIG COMPLIANCE BY INDUSTRY

SIG compliance is critical for organizations in these sectors.

Technology Financial Services Healthcare

DON'T BE A LARRY. TRY LIVETHREAT FREE.

Assess your first vendors free — no credit card, no contract, no gym membership required.

Try 5 Vendors for Free →