Vendor Risk Management

Risk and Vendor Management covers all aspects of significant vendor and supplier management across CERN, including all sectors.

The main objectives of the Risk and Vendor Management function is to:

Identify common ICT risks across computing services and prepare appropriate combined controls and action plans with the stakeholders. This includes understanding the risk appetite for acceptable risks across the CIO landscape responsibilities.

Identify and align information technology and provider risks across CERN, improving forecasting and exit strategies.

Collaborate with ICT Service Managers and IT Operations to protect services through diversification and optimization of vendor ecosystem.