Advisor Dashboard
Real-time overview · all GO partners and sites
12
Active Partners
5
Assessments Open
18
Total Findings
2
New Evidence
↑ +2 today
Assessment Status – All Partners
| Partner / Site | Type | Progress | Score | Status | |
|---|---|---|---|---|---|
Concentrix Clark – Philippines | InfoSec · Site | 72% | 76 | In Review | |
Concentrix Mactan – Philippines | InfoSec · Site | 55% | 62 | In Progress | |
Concentrix Okinawa – Japan | Compliance | 30% | — | Prework | |
Sutherland Chennai – India | InfoSec · Site | 45% | 58 | In Progress | |
Teleperformance Cairo – Egypt | InfoSec · Site | 88% | 84 | Final Review |
Live Activity Feed
Network diagram uploaded · Concentrix Clark
Today 9:14 AM
Remediation plan submitted · F-001
Today 8:45 AM
Teleperformance – Cebu enrolled
Today 8:30 AM
Findings Summary
🔴 Critical4
🟡 High8
🟠 Medium6
💡 Recommendations11
Assessment Questionnaires
InfoSec (12 sections) · Compliance (8 domains) · Add notes and classify findings
Select Assessment
Section 1 – Network Security
2/3 Done
1.1 Does the partner maintain a documented and current network architecture diagram?
✓ Compliant⚠ Finding💡 Rec⏳ Ev. Pending
📎 network_diagram_bogota_v3.pdf— uploaded May 30, 9:14 AM · SecureOps Bogotá
1.2 Are network segments properly segregated (IT / OT / Guest / Camera)?
✓ Compliant⚠ Finding💡 Rec⏳ Ev. Pending
🔴 F-002 · Insufficient network segmentation
1.3 Is there a perimeter firewall with a documented rule review process (minimum annual)?
✓ Compliant⚠ Finding💡 Rec⏳ Ev. Pending
⏳ Awaiting evidence from partner…
Section 2 – Access Control & Identity
0/4 Done
2.1 Is MFA enforced for all privileged / administrative accounts?
✓ Compliant⚠ Finding💡 Rec⏳ Ev. Pending
📎 mfa_config_screenshot.png— uploaded May 29 · Pending review
2.2 Is there a formal access review process conducted at least quarterly?
✓ Compliant⚠ Finding💡 Rec⏳ Ev. Pending
Section 3 – Vulnerability Management
Not Started
Section 4 – Endpoint SecurityNot Started
Section 5 – Incident ResponseNot Started
Sections 6–12 · Awaiting PreworkLocked
Session Summary
Compliant3
Findings2
Recommendations1
Ev. Pending2
Reviewed60%
Findings Log
F-001
Missing EDR on 14 endpointsF-002
Insufficient network segmentationR-001
Patch management undocumentedDomain 1 – Governance & Risk Management1/4 Done
D1-1. Does the organization have a formal information security governance framework?
✓ Compliant⚠ Finding💡 Rec⏳ Ev. Pending
D1-2. Is there a documented and approved Risk Register reviewed at least annually?
✓ Compliant⚠ Finding💡 Rec⏳ Ev. Pending
Domain 2 – Compliance & LegalNot Started
Domain 3 – Asset ManagementNot Started
Domains 4–8Not Started
Compliance Summary
Compliant0
Findings0
Recommendations0
Ev. Pending0
Reviewed0%
Evidence Inbox
Files uploaded by partners · real-time sync
Live
| File | Partner / Site | Requirement | Uploaded | Status | Action |
|---|
Pending Evidence
Notify partners of outstanding evidence requests
Outstanding Requests
Firewall Rule Review Policy
Concentrix · Clark – Philippines · REQ-1.3 · InfoSec Site
Requested: May 28
Asset Inventory Spreadsheet
Concentrix · Clark – Philippines · REQ-1.3 · InfoSec Site
Requested: May 29
Board-Level Risk Report
Concentrix · Okinawa – Japan · C-1.2 · Compliance
Requested: May 27
Escalations
Escalate critical findings to leadership or Security Engineering
🚨 ESCALATED
F-001 · Missing EDR on 14 Endpoints
Concentrix · Clark – Philippines · InfoSec Assessment
Escalation Reason
Critical gap — partner manages 8 Ring camera sites. No EDR means lateral movement risk if compromised. Requires Sec Eng review before provisional report issuance.
Escalated to:
Security Engineering
CISO
🚨 ESCALATED
F-002 · Camera Network Not Segmented
Concentrix · Clark – Philippines · InfoSec Assessment
Escalation Reason
Camera VLAN accessible from corporate network. This represents a direct risk to Ring device integrity. Needs immediate architectural review by Sec Eng team.
Escalated to:
Security Engineering
Remediation Tracker
Review, approve, and track remediation plans with due dates
🔴 F-001 · Missing EDR on 14 endpoints
Deploying CrowdStrike Falcon across all 14 endpoints. Timeline: June 10–20, 2025. Owner: IT Security team lead.
🟡 R-001 · Patch management not documented
Partner has not yet submitted a remediation plan.
🔴 F-002 · Insufficient network segmentation
Implementing dedicated VLAN for camera network with ACLs blocking access from corporate segment. Network team engagement confirmed. Timeline: June 5–12, 2025.
Issue Reports
Generate Provisional and Final reports for partners
| Partner / Site | Assessment | Report Type | Status | Issued | Actions |
|---|---|---|---|---|---|
| Concentrix / Clark PH | InfoSec Site Q2-2025 | Provisional | Issued | 2025-05-28 | |
| Concentrix / Clark PH | InfoSec Site Q2-2025 | Final | Awaiting Remed | — |
KPI Dashboard
Performance scores by site and assessment type · export-ready for Page 0
74
Avg InfoSec Score
↑ +6 vs Q1
68
Avg Compliance Score
↑ +4 vs Q1
3
Assessments Overdue
89%
Remed Completion Rate
Site Scores – InfoSec
Q2 2025 · SHIELD-IS v2.376
Concentrix · Clark – Philippines
Assessment Progress72%
62
Teleperformance · Cairo – Egypt
Assessment Progress55%
Compliance Scores – Partner Level
Q2 2025 · SHIELD-CO v1.1—
Concentrix · Okinawa – Japan
Assessment Progress30%
GO Partners
All enrolled partners, sites, and assessment overview
| Partner | ID | Sites | Assessments | Findings | Last Activity | |||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Concentrix 5 sites · Philippines, Japan, India | GOP-2024-0001–0005 | 5 | 5 | 8 | Today 9:14 AM | |||||||||||||||||||||
|
||||||||||||||||||||||||||
Sutherland 1 site · India | GOP-2024-0006 | 1 | 1 | 3 | Today 8:30 AM | |||||||||||||||||||||
|
||||||||||||||||||||||||||
Teleperformance 3 sites · Egypt, Suriname, Colombia | GOP-2024-0007–0009 | 3 | 3 | 2 | Today 7:55 AM | |||||||||||||||||||||
|
||||||||||||||||||||||||||
⚠ Offboarding Management
Site and partner relationship closures · questionnaires, reports, and approval workflow
🚨 INVOLUNTARY
OB-2025-001
Concentrix · Clark – Philippines
Trigger: Non-cooperation · Evidence gaps across 4 requirements
Initiated
Jun 01, 2025
Deadline
Jun 30, 2025
Partner Response
2 of 4 submitted
Approval Status
Pending Review
Evidence & Prework Status
✅OB-1.1 Asset Return ConfirmationReceived
✅OB-1.2 Access Revocation EvidenceReceived
⏳OB-1.3 Data Deletion CertificateAwaiting
⏳OB-1.4 Final Inventory ListAwaiting
🚫Firewall Rule Review Policy (originally REQ-1.3)Not Submitted
📤 VOLUNTARY
OB-2025-002
Sutherland · Chennai – India
Trigger: Partner voluntary exit · Contract expiration Jun 30, 2025
Initiated
Jun 05, 2025
Contract End
Jun 30, 2025
Partner Response
Not Started
Approval Status
Not Initiated
Offboarding Questionnaire · OB-2025-001
Concentrix · Clark – Philippines · Involuntary
Section A — Site Relationship ClosureSite Level
A-1. Have all Ring/Blink camera systems at this site been decommissioned or transferred?
✓ Confirmed✗ Not Confirmed⏳ Pending
A-2. Has all network access to Ring/Blink systems been revoked at the site level?
✓ Confirmed✗ Not Confirmed⏳ Pending
A-3. Has all Ring/Blink customer and operational data been securely deleted per data retention policy?
✓ Confirmed✗ Not Confirmed⏳ Pending
A-4. Are there any outstanding security findings from prior assessments that remain unresolved?
✓ None⚠ Yes — Documented⏳ Under Review
Section B — Partner Relationship ClosurePartner Level
B-1. Have all contractual obligations been met or formally documented as outstanding?
✓ Met✗ Outstanding⚠ Partial
B-2. Has the partner been formally notified of offboarding terms and acknowledged receipt?
✓ Acknowledged✗ No Response⏳ Sent — Pending ACK
B-3. Is there a corrective action plan (appeal) submitted by the partner?
✓ Yes — Under Review✗ No Appeal
Section C — Offboarding Report Notes
Advisor Summary for Offboarding Report
Risk Level at Closure
🟢 Low
🟡 Medium
🔴 High
Offboarding Summary
Section A3/4
Section B2/3
Section CDone
Questionnaire71%
Risk at Closure
🟡 MEDIUM
Closure Approval Workflow — OB-2025-001
✓
Questionnaire
Complete
✓
Provisional Report
Issued
3
Leadership Approval
Pending
4
Final Closure
Locked
Step 3 — Leadership Approval Required
This offboarding requires sign-off from your program lead and Security Engineering before the final closure report can be issued. Submit the approval request below.
Key Dates & Documentation
Closed Offboardings
| Partner / Site | Type | Reason | Initiated | Closed | Final Status | |
|---|---|---|---|---|---|---|
Teleperformance · Mumbai Hub GOP-2023-0044 – India |
Voluntary | Contract expiration | 2024-10-01 | 2024-11-15 | Closed – Compliant |
Partner Account Management
Approve, reject, and monitor partner POC accounts
Loading...
Loading...
Loading...
Create New Assessment
Assign a questionnaire framework to a partner site
Questionnaire Editor
Create and modify assessment frameworks for your program
Framework Details
Summary
Create or select a framework to start editing
Sections & Requirements