The vendor monitoring evidence auditors ask for — SOC 2 and ISO 27001.
SOC 2 CC9.2 and ISO 27001 A.5.22 both require you to monitor your third-party vendors — and prove it. Statusfield watches 2,000+ vendors around the clock and exports the documented monitoring evidence, no reconstructing the week before fieldwork.
Free plan · No credit card · No trial deadline
Services your monitoring evidence needs to cover
Exportable monitoring evidence
Generate a vendor monitoring report for any date range — per-vendor uptime %, a timestamped incident log with severity and duration, alert-delivery records, and the monitoring methodology. PDF for the file, or a shareable link for your auditor.
Continuous, not reconstructed
Statusfield checks your vendors every 5–30 minutes, 24/7, and logs every incident, status change, and recovery as it happens. The audit trail builds itself — you’re not back-filling screenshots the Friday before fieldwork.
2,000+ vendors, one dashboard
Demonstrate coverage across your full third-party stack — cloud, payments, communications, SaaS — down to individual components. Auditors see a complete picture, not a patchwork of status-page subscriptions.
The same evidence covers SOC 2 and ISO 27001
SOC 2 CC9.2 (Vendor & Business Partner Management) and ISO 27001 A.5.22 (Supplier Service Monitoring) both ask for documented, ongoing vendor monitoring. One report answers both — generate it with either framing.
What the auditor actually gets
Per-vendor uptime %, a timestamped incident log with severity and duration, the alert-delivery records for those incidents, and the monitoring methodology. PDF for the file, or a shareable read-only link for your auditor.
Built for auditor review
Reports unlock after your first 30 days of monitoring history — auditors need a trail, not a snapshot — and cover exactly the period you monitored, stated on the report.
Evidence, not a certificate
Statusfield produces the vendor-monitoring evidence CC9.2 and A.5.22 ask for. It doesn’t make you “SOC 2 compliant” and doesn’t replace Vanta or Drata — it slots in alongside them.
Monitoring evidence is available on the Team plan.
Get Notified Where Your Team Works
Route alerts to the tools you already use — no context switching.
Discord
Rich embed alerts
Instant inbox alerts
PagerDuty
Incidents that auto-resolve
Slack
Native OAuth app
Telegram
Alerts in chats & groups
Webhooks
Any HTTP endpoint
Common questions
What frameworks does this support?
SOC 2 CC9.2 (Vendor & Business Partner Management), ISO 27001 A.5.22 (Supplier Service Monitoring), and any framework requiring documented third-party monitoring evidence. Generate the report with either framing — the underlying data is the same.
How far back does the data go?
From the moment you add a vendor to your monitor list. Reports unlock after your first 30 days of monitoring history — auditors need a trail, not a snapshot — so the sooner you start, the more of your audit window is covered.
Can I share reports with my auditor directly?
Yes. The Team plan includes a shareable report link — your auditor gets a read-only view of your vendor monitoring data without needing a Statusfield account. You can also export a PDF for the file.
Does this replace a compliance platform like Vanta or Drata?
No. Statusfield produces the continuous monitoring evidence for vendor uptime and incidents — one part of vendor management. You still need your vendors’ own SOC 2 reports or certificates, contract and DPA tracking, and the rest of your audit program. It slots in alongside your compliance platform.
Simple, transparent pricing
Start for free. Upgrade when you need more monitors, integrations, or team members.
Don't be the last to know when a service you depend on goes down
Your dependencies and your services. One dashboard. Complete visibility.
Free plan · No credit card · No trial deadline