A procurement team deploys an AI agent to assess new vendors before onboarding. The agent checks KYC documentation completeness, runs sanctions screening, evaluates financial health signals, and assigns a risk tier. Low-risk suppliers get approved automatically. High-risk suppliers get flagged for review. When a sanctions list match appears, the agent rejects the entity and routes it to compliance.

By quarter end the agent has assessed four hundred vendors. Most approvals are routine. A handful of flags involve incomplete beneficial ownership documentation. Two sanctions hits were blocked before any purchase order issued.

When internal audit reviews vendor controls in October 2026, they ask a question the dashboard cannot answer: can you prove the sanctions hit on August 3 was rejected before onboarding, and that a human confirmed the block?

Most teams cannot produce that evidence in a form an external auditor would accept.

Why vendor risk is a controls problem, not a procurement problem

Vendor onboarding sits at the intersection of procurement, treasury, and compliance. A supplier approved without adequate KYC exposes the company to fraud, bribery, and sanctions violations. OFAC enforcement actions in 2025 and 2026 continued to penalize companies that failed to screen counterparties or that processed transactions involving sanctioned entities after a hit should have blocked onboarding.

SOX does not replace OFAC, but SOX auditors testing the control environment ask whether automated onboarding decisions operated effectively. An AI agent approving vendors is an automated control. If it misses a sanctions match, the failure is both a regulatory exposure and a control deficiency.

The audit question is not whether the agent is accurate on average. It is whether each decision, especially each rejection and each critical-tier flag, has an immutable record with input fingerprint, rationale, risk subtype, and reviewer assessment where required.

Sanctions hits are not negotiable

A false positive on a low-risk vendor wastes reviewer time. A false negative on a sanctions match is a different category of failure. The agent that approves an entity on the SDN list has not made a judgment error. It has failed a binary compliance test.

Sigmodx treats sanctions hits like segregation of duties violations in GL review. When risk_subtype is sanctions_hit, the decision is forced to reject regardless of agent ALLOW, LIMIT, or BLOCK state. auto_rejected is set on the event record. Compliance reviewers see a dedicated queue card with Confirm or Escalate actions, not Agree or Disagree. The rejection is included in period attestations. Sanctions detection rate below 99 percent triggers BLOCK.

This is deliberate. Missing one sanctions hit in a hundred assessments is not acceptable at the 95 percent confidence level regulators expect from screening programs.

Critical tier and human oversight

Risk tiers low, medium, high, and critical classify the agent's assessment. Critical tier vendors automatically require human approval before onboarding proceeds. The approval is logged in reviewer_assessments with timestamp and optional note. Attestations include counts of critical-tier decisions and reviewer agreement rates.

An auditor sampling critical-tier approvals can match each decision event to a reviewer assessment without accessing your vendor master file. Entity references are internal IDs you control, not PII stored in Sigmodx.

Ten risk subtypes, one audit trail

KYC incomplete covers documentation gaps before onboarding can proceed. Adverse media captures negative press or litigation signals. Financial risk reflects credit and liquidity concerns. Concentration risk flags over-reliance on a single supplier. Regulatory violation records prior enforcement actions against the entity. Geographic risk covers high-risk jurisdictions. Beneficial owner unclear applies when ownership structure cannot be established. Duplicate vendor catches possible matches to existing master records.

Each flag decision records the subtype, risk score, risk tier, and agent rationale. Period attestations include subtype breakdown and tier breakdown. An auditor reviewing geographic risk flags for a subsidiary operating in a sanctioned region can filter the attestation summary without requesting raw screening tool exports.

What the reliability signal measures

Five signals over a trailing thirty-day window drive agent state. Reviewer agreement rate measures how often compliance staff confirmed the agent's decision. False positive rate tracks flagged vendors reviewers cleared. Sanctions detection rate measures correct rejection of sanctions hits. Escalation rate captures items sent to senior compliance. Approval accuracy measures approved vendors later confirmed by reviewers.

BLOCK applies when sanctions detection rate falls below 99 percent. LIMIT applies when reviewer agreement falls below 90 percent or false positive rate exceeds 10 percent. The thresholds reflect the asymmetry of vendor risk: missing a sanctions hit is worse than over-flagging a low-risk supplier.

Three questions for your compliance officer

First: when your agent rejects a vendor for a sanctions hit, is that rejection logged immutably before any human can override it, or does it live in a workflow ticket that can be deleted?

Second: do critical-tier approvals require logged human sign-off before the vendor record activates in your ERP, or does the agent write directly to the approved vendor list?

Third: can an external auditor verify your vendor risk attestation for Q3 2026 without accessing your screening tool or vendor master? If verification requires system credentials, you have handed custody of the evidence to the auditee.

Closing the loop

The team with a proper audit trail provides a SIGMODX-VENDOR verification string in the PBC package. The auditor verifies it at sigmodx.com/verify, receives summary counts and subtype breakdown, and samples flagged and rejected decisions against reviewer assessments. The screening tool data stays internal. Sigmodx is the proof layer.

The team without that trail reconstructs vendor decisions from email threads and procurement tickets. When OFAC asks about a specific onboarding date, the conversation takes weeks. When the SOX auditor tests vendor approval controls, the deficiency write-up mentions incomplete audit evidence.

Vendor risk assessment is not optional for companies onboarding suppliers at scale. The KYC audit trail is what separates a screening workflow from a defensible control. Build it when you deploy the agent, not when compliance asks for it.

Your Vendor Risk Agent Is Approving Suppliers. Do You Have the KYC Audit Trail?