REQUEST A DEMO

A 3rd Party Supplier Security Assessment Service

Taking the pain out of the Third Party Risk Assessment process

You know that assessing your suppliers is a critical aspect of your Third Party risk management program. But you also know it’s expensive, time-consuming, and often painful… for both your organisation, as well as each supplier.

SupplierAssess is a Third Party Risk Assessment managed service that allows you to supplement your existing supplier risk management programme by leveraging DVV Solutions expertise in performing remote and on-site Third Party assessments. The subscription based service uses industry best practices to enable you to scale your Third Party risk assessments without the need for additional staff or resources.

SupplierAssess accomplishes this by providing the technology, process and people necessary to efficiently understand supplier risk, help you remediate inefficient controls and better prepare and protect your organisation from Third Party risks.

SupplierAssess leverages our Supplier Risk Manager and Supplier Threat Monitor platforms to provide to provide robust management of assessment data and real-time threat intelligence. We utilise Shared Assessments industry-standard practices including Standardised Information Gathering (SIG) questionnaires and Agreed Upon Procedures (AUP) for onsite assessments.

Your dedicated certified Risk Assessor performs detailed analysis based on all the data and evidence gathered and will then present and consult on the resulting risk report and recommended improvements to mitigate any identified risks.

SupplierAssess delivers:

Streamlined Assessments – the resource to assess mission-critical suppliers within a shorter timescale

Enhanced Capability – the processes, resource and skills to manage and analyse large volumes of complex supplier risk assessments

Independent, Professional Verification – the collection, analysis and reporting of each supplier’s risk profile from CTPRP-certified Risk Assessors – especially critical for highly regulated industries

Improved Scalability – the flexibility to manage more suppliers and assessments with greater efficiency

Services


  • Expert risk assessment support from a dedicated, certified Risk Assessor who understand your business requirements
  • Ranking of suppliers and risk factors, collection of assessments and evidence for each Third Party supplier
  • Continuous monitoring from that provides supplemental data points about a supplier’s threat landscape
  • Supplier Assessment Dashboard and Annual Report that include findings and mitigation recommendations

Benefits


  • Better understand the risks of potential breaches and data loss from your suppliers
  • Reduce the time and cost associated with existing manual process and infrastructure
  • Standardise your processes and metrics for greater efficiency
  • Significantly improve time-to-complete and response rates for supplier questionnaires
  • Increase flexibility to scale your Third Party risk assessment process
  • Measure and report on improvements over time
  • Develop a more responsive and efficient Third Party Risk Management program for your orgnsiation

Process


  • We understand your risk appetite, security objectives and compliance requirements
  • We collect supplier questionnaires, supporting evidence and onsite assessments
  • We provide detailed risk analysis, reports and recommendations on information accumulated, industry intelligence and contextual risk environment
  • We work with you and suppliers to implement remediative measures and process improvements
  • We provide continuous threat intelligence between annual assessments

TPRM delivered to your desk


Call today 0161 476 8700

or Submit a Contact Form

Download

Why choose us?


We are specialists in Third Party Risk Management with over 18 years of experience in Cyber Security and Governance, Risk & Compliance
We are a Shared Assessments program member and recognised Assessment Firm with CTPRP-certified Risk Assessors.
We are focused on delivering a Third Party Risk Management program that secures your data supply chain and enhances your IT security posture.