Operations

Vendor Due Diligence

Procurement vendor due diligence workflow: risk categorization, security questionnaire (SIG/CAIQ), financial health check, reference calls, legal review, compliance check (GDPR/HIPAA/SOC2), and approval committee.

15steps

16connections

Loading diagram: Interactive BPMN diagram with 15 steps for the "Vendor Due Diligence" process.

Interactive BPMN diagram with 15 steps for the "Vendor Due Diligence" process.

Initial Risk Categorization
Light-Touch Review
Security Questionnaire (SIG / CAIQ)
Financial Health Check
Reference Calls
Legal Contract Review
Compliance Check (GDPR / HIPAA / SOC2)
Risk Memo Drafted
Approval Committee Review
Vendor Onboarded
Vendor Declined and Notified

Use this template

Process steps

Initial Risk Categorization

Procurement · Internal scorecard

Light-Touch Review

Procurement · Manual review

Security Questionnaire (SIG / CAIQ)

Security Team · Whistic

Financial Health Check

Finance · D&B + Crunchbase

Reference Calls

Procurement · Zoom

Legal Contract Review

Legal Counsel · iManage

Compliance Check (GDPR / HIPAA / SOC2)

Compliance · Vanta

Risk Memo Drafted

Procurement · Notion

Approval Committee Review

CFO + CISO + General Counsel · Zoom + Slack

Vendor Onboarded

Procurement · Coupa

Vendor Declined and Notified

Procurement · Outlook

Related templates

Customer Support Ticket

Customer support ticket handling from intake to resolution.

Internal Audit

Internal audit process from planning through fieldwork to reporting.

AI Support Ticket Triage

AI-driven customer support workflow: automatic ticket categorization, priority scoring, knowledge-base deflection, and AI-drafted responses reviewed by agents before send.

Need a custom process?

Upload any document (meeting notes, SOPs, emails) and LucidFlow's AI will generate a BPMN diagram automatically.

Try for free