CONTACT US
Third Party Risk Management - Consultancy, Assessment & Advisory

Blog

Quick Guide to GDPR and Third Party Risk – 6 months to get your data supply chain GDPR compliant

A few thoughts from our Guide to GDPR and Third Party Risk. DVV Solutions were privileged to host a panel discussion at ILTA INSIGHT Summit 2017 last week in London. Titled “GDPR and the Supplier IT Risk Landscape” the panel offered some interesting insight into the impacts of GDPR from the perspectives of an IT…

LEARN MORE

All for One and One for All. Is it time for the Evidence Sharing Network to shine in TPRM?

A few thoughts on the “Evidence Sharing Network” model. I’m pleased to say that the seven key steps for establishing a cost-effective Third-Party risk management (TPRM) program are definitely beginning to resonate. However, as normal, priorities and resources are naturally focused on daily tasks, keeping risk management at a secondary level of importance and diverging…

LEARN MORE

Mitigating Big Risks? Think Small Supplier Risk Assessments

A few thoughts on Small Supplier Risk Assessments – Every supplier represents a potential security risk to your organisation. Whether it’s a small specialised law firm, a local value added reseller delivering technology and providing services, a consultant dedicated to your industry, or an off shore Web developer, it’s important to understand those risks –…

LEARN MORE

Applying a Risk Management Approach to Evaluating Cloud Technologies

Evaluating Cloud Risk In the past five years, we have seen tremendous changes in technology, personnel and business practices. Cloud has now become the de-facto industry model for providing computing services. Mobile has become the most common model for accessing data. Cloud platforms are managing billions of Internet of Things (IoT) devices daily, and new…

LEARN MORE

Why EVERYONE Needs To Be Concerned About Vendor Security

Why EVERYONE Needs To Be Concerned About Vendor Security We are continuing to learn more about the breach at Larson Studios which resulted in the release of 10 episodes of Orange Is The New Black (OITNB) as well as other titles from Netflix, ABC, CBS, and Disney. While the analysis of the event in Variety…

LEARN MORE

Evaluating Cloud Risk for the Enterprise – An Updated Shared Assessments Guide

Shared Assessments has released its updated guide to Evaluating Cloud Risk for the Enterprise. Using this Cloud Guide, risk managers can begin to evaluate specific areas of cloud risk, ask the right questions and ensure they get answers they understand. Executive Summary This Guide is the second iteration of the Evaluating Cloud Risk for the Enterprise,…

LEARN MORE

A new era of threats from IoT Third Party Risk

Ready or Not – IoT Third Party risks have arrived Research conducted by The Ponemon Institute, and shared in a study from Shared Assessments, has found that efforts to mitigate IoT Third Party risks need to significantly improve. The research highlights the fact that companies are relying on legacy technologies and governance practices to address potential…

LEARN MORE

GDPR – 1 year to go – Started preparations? Great. But how’s your Third-Party Risk?

A few thoughts on GDPR and Third Party Risk – A year today, on May 25th 2018 the biggest change to data protection law in 20 years will kick in. The EU General Data Protection Regulation (GDPR) is its replacement. By now you know the risks – any breach of Personally Identifiable Information (PII) can result in new penalties…

LEARN MORE

Third Party Risk Rating – Setting Expectations for your Third Parties

Third Party Risk Rating During On-Boarding Including Third Party risk rating as a strategic part of a robust risk management program provides the opportunity for early identification of the wide range of issues that ripple through both regulated and unregulated industries wherever outsourcing is present. Scoring third parties consistently was ranked as the most challenging…

LEARN MORE

Seven Stages to Vendor Risk Management

A few thoughts on Vendor Risk – One of the key problem areas of enterprise risk management is vendor risk. Managing hundreds to thousands of vendors, suppliers, outsourcers and other third-party relationships is difficult in the best of financial times. With shrinking budgets and fewer staff, how can vendor risk management be performed correctly? These…

LEARN MORE