Third Party Risk Management - Consultancy, Assessment & Advisory

Dynamic Vendor Verification

Assess, manage and remediate risk in your cyber supply chain more efficiently and effectively. Our Third-Party risk managed services enable greater scale and speed in deploying a robust TPRM and supplier assurance program.


The Risk Officer’s Precise Guide to Accelerating Full-Stack Continuous Third-Party Risk Management

Learn how leading CROs are approaching the need to modernise their third-party risk management and actionable intelligence.


Enhancing ESG & Supply Chain Risk Management

When there is a lack of transparency in the supply chain, the opportunity for unethical behaviour increases, and corporate reputation is at risk. Supply Wisdom provides a robust methodology for assessing over 200 risk parameters for comprehensive supplier and location due diligence.


ICYMI - Replay the TPRM webinar: ESG Risk & Compliance – The Emerging Regulatory Challenge for TPRM

Replay our latest webinar with Supply Wisdom to learn more about the growing focus on ESG and Compliance, what a best-practice ESG framework and reporting should include, and how to integrate ESG risk intelligence and real-time reporting into your TPRM program


Third-Party Risk Managed Services - TPRM-as-a-service

Take the pain out of TPRM with our full managed service offering. Select the services you need to improve the speed, efficiency and scalability of your TPRM program, or let us manage your whole program for you.


what we do

Our suite of managed services enables you to more efficiently manage the increasing volumes and complexity of Third Party supplier risk and regulatory compliance.

Service Icon

Third Party Risk Program Maturity

Our team of Certified Third Party Risk Professional will develop and mature your TPRM program in line with industry standards and recognised best-practices.

Service Icon

Third Party Risk Managed Services

Providing flexibility, scalability and cost-efficiency. Complete “Third Party risk as-a-service” leveraging our expertise in program management, risk assessment, reporting and risk advisory.

Service Icon

Third Party Risk Assessments

Our Certified Third Party Risk Assessors can reduce the time and cost of labour-intensive assessment processes, augmenting existing in-house teams or delivering risk assessments as a managed service.

Service Icon

Third Party Risk Advisory

We combine clear risk insights and analysis with over 20 years’ experience in governance, risk and compliance to build a robust strategy for your supply chain due diligence and third party risk remediation.


about us

We are a leading managed service provider for Third Party Risk Management solutions.

We help organisations enhance oversight of the myriad of enterprise risks associated with business process outsourcing and the cyber supply chain.

We are driven to deliver the most scalable and cost-effective solution to meet each Customer’s unique requirements.

Video placeholder

our partners

We have teamed with world-class thought leaders, industry bodies and technology providers to create best of breed TPRM services and solutions. This enables our Customers to rapidly and seamlessly implement comprehensive TPRM programs with the highest quality of service and support.

Shared Assessments

DVV Solutions are proud to have been accepted within the Shared Assessments global membership program with recognised status as an authorised Assessment Firm.

As the trusted source in third party risk, the member-driven Shared Assessments Program has been setting the standard in third party risk assessments since 2005.

Shared Assessments Program members work together to build and disseminate best practices, building resources that give all third party risk management stakeholders a faster, more rigorous, more efficient means of conducting security, privacy and business resiliency control assessments. For more information on Shared Assessments, visit


ProcessUnity’s cloud-based solutions help organisations of all sizes automate their risk and compliance programs. Their highly configurable, easy-to-use tools significantly reduce manual administrative tasks, allowing customers to spend more time on strategic risk mitigation.

As a software-as-a-service technology, ProcessUnity Vendor Cloud deploys quickly with minimal effort from customers and their IT resources. Vendor Cloud’s technology delivers faster, better results, and the ability to scale governance, risk, and compliance programs over time. Learn more at


BlueVoyant Third-Party Cyber Risk Management Services help protect organisations by identifying, assessing, and remediating security risks posed by third-party relationships. BlueVoyant utilises our powerful, proprietary datasets to expertly identify and measure third-party risk, integrating people, processes, and technology to tailor solutions to an organisation’s needs.

BlueVoyant’s highly skilled team includes former government cyber officials with extensive frontline experience in responding to advanced cyber threats on behalf of the National Security Agency, Federal Bureau of Investigation, Unit 8200, and GCHQ, together with private sector experts.

Learn more at


SupplyWisdom is a NeoGroup company.

NeoGroup, Inc. has been monitoring suppliers and locations around the globe since 1999. At the behest of two of our clients, a financial services company and a pharmaceutical company, we collaborated and co-created a risk monitoring solution. Supply Wisdom was born in 2012 out of this need for an early warning service to help clients detect and prevent disruptions.

Today, Supply Wisdom equips global enterprises with continuous third-party risk intelligence, real-time risk monitoring, in-depth risk assessments, and health scorecards to minimise the risks of disruption facing all global businesses.

Black Kite

Black Kite enables enterprises to monitor their external cyber risk posture and perform nonintrusive cyber risk assessments of their suppliers, subsidiaries and target acquisitions.

Using easy-to-understand scorecards, we provide standards-based letter grades on various risk categories, along with data on how to mitigate each risk in priority order.

Learn more at

BitSight Technologies

Founded in 2011, BitSight transforms how organisations manage cyber risk. The BitSight Security Ratings Platform applies sophisticated algorithms, producing daily security ratings that range from 250 to 900, to help manage their own security performance; mitigate third party risk; underwrite cyber insurance policies; conduct M&A due diligence and assess aggregate risk.

With over 1,500 global customers and the largest ecosystem of users and information, BitSight is the most widely used Security Ratings Service. For more information, please visit, read their blog or follow @BitSight on Twitter.

Supplier Strip Background

“DVV Solutions led the risk assessment workshops with our HR, Finance and clinical teams to define the flow of information in and out of the organisation and their expertise and experience of this process was invaluable.”


Director of Information Management & Technology Royal Liverpool and Broadgreen University Hospitals NHS Trust

Latest News