Case Study: dōTERRA achieves faster, streamlined vendor security management with Whistic

dōTERRA takes vendor security management to the next level with Whistic

dōTERRA International, a global leader in aromatherapy and essential oils, needed a better way to manage third-party vendor security risk. After a frustrating year-long attempt with a GRC platform that required heavy customization and never fully got off the ground, the company’s first CISO, Eric Sorenson, looked for a purpose-built vendor security solution that would be faster and easier for internal teams and vendors to use.

dōTERRA implemented Whistic to manage vendor security assessments and build a streamlined vendor risk management process. Whistic got the team up and running in just 60 days, nearly 6x faster than their previous GRC platform, while replacing email and Excel-based workflows with automated forms and alerts, improving visibility into vendor risks, and giving executives better reporting and decision-making tools.

doTERRA

Eric Sorenson

Chief Information Security Officer