CORL leads the industry in tech-enabled managed services for vendor risk management and compliance. The company was founded in 2012 to address the need to achieve measurable risk reduction at scale through vendor intelligence, technology, and managed services.
OUR LEADERSHIP TEAM
CORL’s leadership team has decades of experience in the information security, compliance, and vendor risk management fields. Our seasoned team of experts has developed and managed third-party risk management programs for 100+ premier organizations across the country.
Our data on vendor security risk practices is unmatched. We have performed security assessments of over 79,000 vendors and have advanced analytics and workflow automation capabilities that deliver vendor intelligence, process efficiencies, cost reduction, and scale for our client’s third-party risk management programs.
CORL’s mission is driven by a spirit of collaboration. We bring together our customers, vendors, technology partners, and other industry stakeholders to achieve our shared objective of protecting sensitive information in the most efficient and cost-effective manner possible.
CORL serves clients across the country and is headquartered in Atlanta, GA.
We also maintain offices in Philadelphia, San Diego, Denver, Nashville, and India.
CORL is doing a really good job working with our vendors to complete security risk assessments and it’s a key area that helps me not have to deal with the project management hassles to get stuff done. It takes time off our shoulders and we know you are going to stick with them and see it through to get it done. Overall CORL is a great value proposition for us.
– Information Security Manager
The CORL team is very good, and they do a good job with our vendors. CORL takes the struggles of following up with our vendors off of my plate.
– Chief Information Security Officer
We are really able to scale our third-party monitoring now. Before CORL, we only performed assessments on new vendors or certain vendors we felt were high risk - very arbitrary. Now we have a much more structured approach on assessing our existing vendors - a part of our third-party risk management program that we hadn’t addressed before.