CONTACT US
Third Party Risk Management - Consultancy, Assessment & Advisory

Newsroom

Dynamic Due Diligence – The Shared Assessments TPRM Framework Module 6

While at first glance the topic of due diligence may appear to be a stodgy one, the reality of a rapidly changing risk landscape and the evolution of due diligence techniques suggests that the opposite is true. The latest section of the Shared Assessments Third Party Risk Management (TPRM) Framework has just been released, providing…

LEARN MORE

Monitoring Third-Parties Continuously: A NIST Perspective

NIST released two industry standards to drive security requirements around supply-chain (a.k.a Third-Party) management. Here’s an overview of the NIST guidelines regarding continuous Third-Party risk monitoring.   NIST 800-53 NIST 800-53 Security and Privacy Controls for Federal Information Systems and Organisations sets out guidelines and controls for protecting the government’s sensitive information as well as…

LEARN MORE

Driving Operational Resilience through better Third Party Risk Management @ New Generation Operational Risk Europe 2020

Delivering A Comprehensive Approach to TPRM DVV Solutions, specialists in Third Party Risk Management, are proud to announce our co-sponsorship with ProcessUnity and BitSight of CeFPro’s 6th Annual New Generation Operational Risk European seminar. “We’ll be bringing valuable insight into innovative approaches to launch, grow and optimise Third-Party risk management (TPRM) programs, improving both the…

LEARN MORE

Data Protection Day 2020 – Your annual reminder of the criticality of Data Privacy & Protection in your cyber supply chain

Happy Data Protection Day! January 28th is Data Protection Day (a.k.a. Data Privacy Day), providing a focal point to the importance of respecting privacy, safeguarding data and enabling trust between data subjects and those who store, process and use their data. In support of Data Protection Day the web site www.staysafeonline.org provides a suite of…

LEARN MORE

Using the FAIR Model to Quantify Third-Party Cyber Risk

In a mature risk management program, risk is usually defined in business terms (financial impact) and then measured against factors such as risk appetite (the defined dollar figure of risk that a company is willing to accept) and risk tolerance (the percent beyond the defined dollar amount that a company is willing to tolerate). However,…

LEARN MORE

‘Tis the season for.… Fourth Party Risk Management

  We all know the drill. It’s time for some annual festivity, frivolity and fake fir trees. But without wanting to sound like the Grinch, there is one thing that doesn’t take a holiday. RISK! Over the last few years, growing media attention from third party data breaches, backed up by the growing regulations and…

LEARN MORE

Supply Wisdom Ranked by Enterprise Security as a Top 10 Risk Management Service Provider

DVV Solutions partner Supply Wisdom, the industry leading real-time and continuous third-party and location risk intelligence and monitoring solution, has been recognised by Enterprise Security as a Top 10 Risk Management Services company for 2019.   Enterprise Security Magazine presented their list of 2019’s “top 10 Risk Management Service Providers who are capable of helping…

LEARN MORE

DVV Solutions NormShield Managed Services Drives Scalability in Cyber Risk Ratings & TPRM Programs

New NormShield Managed Services and Consultancy helps customers to develop more robust and resilient Third Party assurance programs with scalable integration of NormShield Cyber Risk Ratings.   DVV Solutions has announced the launch of its NormShield Managed Services – a range of managed and consultancy services to aid companies looking to implement, develop and optimise…

LEARN MORE

ProcessUnity recognised as “Leader” in IT Vendor Risk Management in latest Gartner report

Gartner has positioned DVV Solutions trusted technology partner ProcessUnity in the “Leaders” Quadrant of the Magic Quadrant for IT Vendor Risk Management Tools.   The 2019 IT Vendor Risk Management Magic Quadrant report evaluates the 16 solutions within the IT Vendor Risk Management (VRM) landscape, based on each vendor’s Completeness of Vision and Ability to…

LEARN MORE

What the European Banking Authority (EBA) Guidelines Mean for Supplier Risk Management

Using the European Banking Authority (EBA) guidelines to streamline your supplier risk management program Simply stated, financial services faces enormous risk in an age when attack surfaces are expanding exponentially. All too often do these risks, and the regulations introduced to mitigate them, become barriers to innovation. To help pave the way towards better risk…

LEARN MORE