Policy POL-2017

Vendor Security Assessment

Information security (restricted category). State: Attestation open. Owner: Marcus Sterling.

✦AI-assisted summaryAttestation open

What you can do

Permissions and gate decisions for this policy and your active persona (admin).

You can attest.

This policy is in the restricted category (Information security). Publication requires legal + security reviewer approvals in addition to SME before executive sign-off.

Policy summary

Current version metadata, effective dates, and AI-assisted summary.

Current version: v1 (Attestation open)
Effective: Apr 6, 2026
Next review: Apr 6, 2027
Expires: Apr 6, 2027 (in 325d)
AI summary: AI summary: Vendor Security Assessment v1 — covers information security with initial publication. Recommended attestation cycle: annual.
Attestation coverage: 0 / 0 (0%)
Assignment audiences: -

Current version body

v1 authored by Marcus Sterling.

# Vendor Security Assessment (v1)

Northstar Logistics Holdings — Information security category.

## Purpose

This is version 1 of Vendor Security Assessment.

Reviewer chain

SME, Legal, Security, Compliance reviewers. Restricted-category policies require Legal + Security.

Order	Reviewer type	Reviewer	State	Decision	Comment
No review steps yet. Submit for review to seed.

Version history

Every version with its publication date. Earlier versions are retired when a new one publishes.

Version	State	Author	Published	Substantive	Retired
v1	Attestation open	Marcus Sterling	Apr 6, 2026	Cosmetic	—

Recent attestations

Most recent 12 attestation rows for this policy.

Employee	State	Assigned	Due	Attested at	IP

Full attestation roster: see audit evidence packet or the full attestation queue. Use the audit-bundle Export button on the packet to download CSV.

← Back to all policies