Third Party Risk Management - Consultancy, Assessment & Advisory

DVV Solutions remain "Open for business" through the COVID-19 outbreak

Sean O'Brien, MD explains how we are able to continue to support our Staff and Customers, and maintain "Business As Usual" throughout the COVID-19 outbreak.


DVV Solutions to deliver Shared Assessments Certified Third Party Risk Professional Training

DVV Solutions are pleased to offer the opportunity for Third Party Risk and IT Security Assurance practitioners in the UK to register for the upcoming Certified Third Party Risk Professional (CTPRP) virtual training and certification course in November 2020.


Supply Wisdom Granted Patent for Real-time & Continuous Risk Monitoring Solution

Patented technology and methodology to transform risk data into quantified risk metrics to assess and compare the risk of Third Parties and Locations.



Score, Assess and Monitor risk in your cyber supply chain more efficiently and effectively. Our Third-Party risk managed services enable greater scale and speed in deploying a robust Third-Party and supplier assurance program.


SupplyWisdom Offers Free Real-Time and Continuous Alerts on COVID-19

All of the COVID-19 alerts that Supply Wisdom has issued to date as well as those that will be issued in the future as they continue to monitor this pandemic will be openly available on the Supply Wisdom website.


Using the FAIR Model to Build a Robust Approach to Third-Party Cyber Risk

Learn how DVV Solutions and NormShield use the FAIR model to help our Customers understand, analyse and quantify information risk in real financial terms.


Third-Party Risk Managed Services

Assess, manage and mitigate risk in your cyber supply chain more efficiently and effectively. Our Third-Party risk managed services enable greater scale and speed in deploying a robust TPRM and supplier assurance program.


Third-Party Risk Consultancy and Program Maturity

No matter where you are in the process of addressing your Third-Party Risk we can provide the support to develop your strategic plan or identify effective measures to improve the maturity, efficiency and regulatory alignment of your TPRM program.


what we do

Our suite of managed services enables you to more efficiently manage the increasing volumes and complexity of Third Party supplier risk and regulatory compliance.

Third Party Risk Program Maturity

Our team of Certified Third Party Risk Professional will develop and mature your TPRM program in line with industry standards and recognised best-practices.


Third Party Risk Managed Services

Providing flexibility, scalability and cost-efficiency. Complete “Third Party risk as-a-service” leveraging our expertise in program management, risk assessment, reporting and risk advisory.


Third Party Risk Assessments

Our Certified Third Party Risk Assessors can reduce the time and cost of labour-intensive assessment processes, augmenting existing in-house teams or delivering risk assessments as a managed service.


Third Party Risk Advisory

We combine clear risk insights and analysis with over 20 years’ experience in governance, risk and compliance to build a robust strategy for your risk remediation and mitigation.


about us

We are a leading managed service provider for Third Party Risk Management solutions.

We help organisations enhance oversight of the myriad of enterprise risks associated with business process outsourcing and the cyber supply chain.

We are driven to deliver the most scalable and cost-effective solution to meet each Customer’s unique requirements.


our partners

We have teamed with world-class thought leaders, industry bodies and technology providers to create best of breed TPRM services and solutions. This enables our Customers to rapidly and seamlessly implement comprehensive TPRM programs with the highest quality of service and support.

Shared Assessments

DVV Solutions are proud to have been accepted within the Shared Assessments global membership program with recognised status as an authorised Assessment Firm.

As the trusted source in third party risk, the member-driven Shared Assessments Program has been setting the standard in third party risk assessments since 2005.

Shared Assessments Program members work together to build and disseminate best practices, building resources that give all third party risk management stakeholders a faster, more rigorous, more efficient means of conducting security, privacy and business resiliency control assessments. For more information on Shared Assessments, visit


NormShield enables enterprises to monitor their external cyber risk posture and perform nonintrusive cyber risk assessments of their suppliers, subsidiaries and target acquisitions.

Using easy-to-understand scorecards, we provide standards-based letter grades on various risk categories, along with data on how to mitigate each risk in priority order.

Learn more at


ProcessUnity’s cloud-based solutions help organisations of all sizes automate their risk and compliance programs. Their highly configurable, easy-to-use tools significantly reduce manual administrative tasks, allowing customers to spend more time on strategic risk mitigation.

As a software-as-a-service technology, ProcessUnity Vendor Cloud deploys quickly with minimal effort from customers and their IT resources. Vendor Cloud’s technology delivers faster, better results, and the ability to scale governance, risk, and compliance programs over time. Learn more at

BitSight Technologies

Founded in 2011, BitSight transforms how organisations manage cyber risk. The BitSight Security Ratings Platform applies sophisticated algorithms, producing daily security ratings that range from 250 to 900, to help manage their own security performance; mitigate third party risk; underwrite cyber insurance policies; conduct M&A due diligence and assess aggregate risk.

With over 1,500 global customers and the largest ecosystem of users and information, BitSight is the most widely used Security Ratings Service. For more information, please visit, read their blog or follow @BitSight on Twitter.


SupplyWisdom is a NeoGroup company.

NeoGroup, Inc. has been monitoring suppliers and locations around the globe since 1999. At the behest of two of our clients, a financial services company and a pharmaceutical company, we collaborated and co-created a risk monitoring solution. Supply Wisdom was born in 2012 out of this need for an early warning service to help clients detect and prevent disruptions.

Today, Supply Wisdom equips global enterprises with continuous third-party risk intelligence, real-time risk monitoring, in-depth risk assessments, and health scorecards to minimise the risks of disruption facing all global businesses.

“DVV Solutions led the risk assessment workshops with our HR, Finance and clinical teams to define the flow of information in and out of the organisation and their expertise and experience of this process was invaluable.”


Director of Information Management & Technology Royal Liverpool and Broadgreen University Hospitals NHS Trust

Latest News