DMS– SAE overview

If you have the third‑party risk manager role [sn_vdr_risk_asmt.vendor_risk_manager], you can access and use third‑party and engagement documentation during assessment activities. The Document Management System (DMS) works with SAE to make documents available during assessments. When a document is uploaded or updated in DMS, the system retrieves the file, extracts key metadata, and classifies it so that relevant information can support assessment responses.

This capability reduces manual effort by ensuring that essential vendor documentation remains accessible throughout the assessment process, while still allowing users to review, edit, and finalize their responses.

Key capabilities

When using DMS with SAE, you can take advantage of the following capabilities:

• Automated document retrieval: Detects document lifecycle events such as uploads, updates, and version changes, and retrieves the file, version, vendor identifiers, and related metadata.
• Document classification: Maps DMS document types to supported assessment categories. When needed, the system uses heuristic checks such as file name, path, and MIME type to determine the appropriate classification.
• Metadata preparation: Aligns DMS metadata with assessment template requirements. Organizations with customized TPRM template categories can extend existing logic to ensure consistent handling of vendor documents.
• AI‑assisted response drafting: Uses DMS document content to generate draft responses for assessment questions. Users can review and edit these drafts, and assessments are never submitted automatically.
• Extensibility options: Supports additional document sources and customizable display options for document‑derived information during assessment review.