Why contract management is a CFO issue
Vendor contracts touch every line item on your P&L. But most CFOs don't manage contracts directly — they delegate to operations. And most operations teams manage contracts reactively — which means your numbers are partially shaped by forgotten renewals you never approved.
This checklist gives you CFO-level oversight of contract management without micromanaging operations. It's designed for companies with $1M-$50M revenue and 30-300 vendor contracts.
Section 1: Strategic oversight
Annual vendor spend review
- Total vendor spend as % of revenue: Calculate and track quarter-over-quarter
- Top 10 vendors by spend: Know who they are, what they do, and how dependent you are
- Vendor concentration risk: What % is your top vendor? (Alarm at 25%+)
- Category breakdown: Tech, services, facilities, marketing — know the split
- Year-over-year change: Flag any category growing faster than revenue
Target metrics:
- Total vendor spend: 3-8% of revenue (varies by industry)
- Top vendor: <20% of total vendor spend
- Annual growth: Not more than 10% above revenue growth
Quarterly upcoming renewal review
- Next 90 days: Total value of contracts up for renewal
- Strategic renewals: Any contract over $10K/year on the list
- Negotiation status: Which ones are being actively negotiated?
- Expected savings: Target savings for this quarter
- Risk contracts: Any vendors you'd regret renewing?
This review takes 15 minutes per quarter if you have a tracker. Without one, it takes hours of chasing.
Annual planning integration
- Budget baseline: Current year's actual vendor spend
- Expected price increases: Document any contractual escalations
- Planned cancellations: Subtract from next year's budget
- New vendor pipeline: Add expected new contracts
- Buffer: 10% for unexpected vendor needs
Rule: Next year's vendor budget should be 90-110% of current year for stable companies. Anything outside that range needs justification.
Section 2: Compliance and audit readiness
Documentation standards
- Contract registry: Single source of truth for all vendor contracts
- Document storage: Signed PDFs stored centrally, not in individual emails
- Metadata capture: Key terms extracted and searchable
- Retention policy: Clear rules on how long to keep terminated contracts
- Access control: Role-based access to contract information
Audit trail requirements
- Decision log: Every renewal decision documented with rationale
- Approval chain: Who approved what, when
- Change history: All modifications to contracts tracked
- Communication log: Key conversations with vendors documented
- Reviewer sign-off: Independent review for high-value contracts
Compliance checkpoints
If you have compliance obligations (SOC2, ISO, GDPR, HIPAA):
- Data Processing Agreements (DPAs): Current for all vendors handling data
- Security assessments: On file for vendors in scope
- Termination rights: Confirmed for regulatory requirements
- Audit preparation: Can you produce vendor documentation within 24 hours if asked?
Section 3: Financial controls
Spend authorization
- Signing authority: Clear rules on who can sign what (by dollar amount)
- Single sign-off threshold: Above $X requires multiple approvers
- CFO sign-off threshold: Above $X requires your explicit approval
- Unapproved spend: Process for handling vendors signed up without authority
Typical thresholds for $5M-$20M companies:
- Up to $500/mo: Department lead signs
- $500-$2,000/mo: Department lead + operations
- $2,000-$5,000/mo: Operations + CFO sign-off
- $5,000+/mo: CFO + CEO sign-off
Payment controls
- Recurring payments list: You can see every recurring vendor payment
- Unauthorized charges alerts: Notifications for new recurring charges
- Credit card monitoring: Team cards tracked for subscription signups
- Wire transfer approvals: Large one-time payments require dual approval
Vendor payment review
Monthly review:
- New recurring charges: Any new vendors added to payments?
- Price changes: Any existing vendors charging different amounts?
- Missing payments: Any vendors where payment failed?
- Duplicate charges: Accidentally double-billed?
This review catches errors before they become problems. 10 minutes/month.
Section 4: Negotiation discipline
Negotiation scoreboard
Track for each negotiated contract:
| Metric | Target |
|---|---|
| Contracts negotiated (quarterly) | 30% of renewals |
| Average savings per negotiation | 10-20% |
| Total savings (quarterly) | Track and report |
| Failed negotiations (walked away) | 10-20% of attempts |
Pre-renewal preparation
For every contract worth $1,000+/year:
- Usage data ready: Actual vs. contracted consumption
- Alternative research: Know 1-2 credible alternatives
- Walk-away point: Pre-decided threshold for walking
- Team alignment: Decision-makers aligned before negotiation
- Negotiator assigned: One person owns the conversation
Post-renewal documentation
After each negotiation:
- Outcome logged: What was the final price vs. target?
- Savings calculated: Vs. auto-renewal baseline
- Lessons captured: What worked, what didn't?
- Vendor relationship noted: How did this affect the relationship?
Section 5: Operational excellence
Monthly CFO review (15 minutes)
At the start of each month, review:
- Upcoming 30-day renewals: Nothing should be a surprise
- Last month's renewal decisions: Any concerns or follow-ups?
- Savings delivered last month: Track the number
- Vendor spend vs. budget: Any categories off track?
- Any new high-value contracts signed: Understand them
Quarterly CFO deep-dive (1 hour)
At the end of each quarter:
- Top 10 vendor review: Each one evaluated for value
- Concentration analysis: Any shift in vendor dependency?
- Savings summary: Total negotiated and canceled savings
- Next quarter pipeline: Preview what's coming
- Strategic decisions: Major changes needed?
Annual CFO strategic review (2 hours)
Annually, take a strategic view:
- Vendor portfolio analysis: Strategic vs. commodity vendors
- Risk assessment: Lock-in risk, concentration risk, compliance risk
- Consolidation opportunities: Can you reduce vendor count?
- Strategic relationships: Which vendors should become partners?
- Budget implications: Multi-year outlook
The tools you need
Minimum: Spreadsheet + discipline
If your company is under 20 contracts:
- Shared spreadsheet with strict maintenance rules
- Monthly review cadence
- Calendar alerts for renewals
Recommended: Contract tracker
For 20+ contracts:
- Dedicated contract tracking tool
- Automated alerts
- Audit trail built-in
- Team collaboration
Enterprise: Full CLM
For 200+ contracts or heavy compliance:
- Full Contract Lifecycle Management platform
- Integration with ERP/accounting
- Advanced reporting and analytics
- Dedicated vendor management
The CFO questions you should be able to answer instantly
Test yourself. Can you answer each of these in under 30 seconds?
- "What's our total annual vendor spend?"
- "Which vendor costs us the most?"
- "How many contracts are renewing in the next 90 days?"
- "What's our biggest negotiation win this year?"
- "Are we in compliance with vendor documentation requirements?"
- "Who approved our [biggest vendor] contract?"
- "When can we exit [any vendor] if we need to?"
- "What did we spend on SaaS last year vs this year?"
If you can't answer these quickly, your contract management system is broken.
The bottom line for CFOs
Contract management isn't something you should personally do, but it's something you should have confident visibility into. The ops team does the work — your job is oversight, controls, and strategic direction.
With the right system (a contract tracker + this checklist + a disciplined review cadence), 30 minutes of your time per month gives you complete control over vendor spend. Without it, you're flying blind on a significant chunk of your P&L.
Termhawk gives CFOs instant visibility into contract status, renewal pipeline, and vendor spend. Built-in audit trail for compliance. Start free.