Free Resource
Anthracite Advisory · 2026

The Vendor Audit Blueprint

Seven questions every professional firm should ask before renewing any vendor contract. Built from fifteen years of vendor evaluation in regulated environments where getting it wrong has real consequences.

Covers vendor fit, true cost, market benchmarking, exit terms, ownership, security obligations, and alternatives

Each question includes red flags and what a strong answer looks like

3-page PDF · Ready to use in your next vendor review

Get the Blueprint
Enter your name and email to download immediately. No follow-up sequence. No obligation.

We respect your inbox. Your information is never shared or sold.

What's inside

Seven questions.
One rigorous framework.

Most vendor renewals happen on autopilot. This blueprint gives you the questions to change that — and the clarity to know when a vendor relationship needs to be renegotiated or replaced.

01
Is this vendor still the right fit for where the firm is going?
Vendors that were right at 10 people aren't always right at 30. Strategic fit erodes quietly.
02
What is the true all-in cost of this relationship?
The invoice is rarely the full cost. Internal time, workarounds, and integration overhead add up.
03
When did you last benchmark this contract against the market?
New customers often pay less than tenured ones. Without benchmarking, you're paying the loyalty tax.
04
What are the exit terms and switching costs?
Knowing your exit is leverage. Vendors with punishing terms know you're trapped and price accordingly.
05
Who owns this vendor relationship — and do they have the right mandate?
Without a clear internal owner, renewals happen by default and problems go unaddressed.
06
What security obligations does this vendor create for the firm?
Every vendor with system or data access is a compliance obligation. Most firms don't track this.
07
What would replace this vendor if they failed, raised prices 40%, or were acquired tomorrow?
The best time to know your alternatives is before you need them. This question changes how you negotiate every renewal.
About Anthracite Advisory

Built from fifteen years
in the room.

This blueprint reflects the vendor evaluation framework developed across fifteen years of simultaneous COO and CTO responsibility at a regulated investment firm — where vendor decisions had to be documented, defensible, and built to hold under scrutiny.

15+
Years evaluating vendors in regulated environments
0
Vendor relationships that bias our recommendations
2
Executive roles held simultaneously — COO and CTO integrated

Ready to run the audit?

The blueprint is the starting point. The Operating Architecture Assessment goes deeper — a fixed-fee, 2–3 week engagement that maps your full vendor stack, benchmarks costs, identifies risk gaps, and delivers a prioritized blueprint.

Request an intro call View services