Alternatives to ProcessUnity
Compare ProcessUnity alternatives for your business or organization using the curated list below. SourceForge ranks the best alternatives to ProcessUnity in 2024. Compare features, ratings, user reviews, pricing, and more from ProcessUnity competitors and alternatives in order to make an informed decision for your business.
-
1
Resolver
Resolver
Resolver gathers all risk data and analyzes it in context — revealing the true business impact within every risk. Our Risk Intelligence Platform traces the extended implications of all types of risks — whether compliance or audit, incidents or threats — and translates those effects into quantifiable business metrics. Finally, risk becomes a key driver of opportunity instead of being disconnected from the business. Choose the risk intelligence software used by over 1000 of the world’s largest organizations. Resolver makes it easy to collaborate and collect data from across the enterprise, allowing teams to fully understand their risk landscape and control effectiveness. Understanding your data is one thing; being able to use it to drive vital action. Resolver automates workflows and reporting to ensure risk intelligence turns into risk reduction. Welcome to the new world of Risk Intelligence. -
2
Predict360
360factors
Predict360 is an integrated risk and compliance management software platform for financial and insurance organizations. It integrates risk and compliance processes and industry best practices content into a single platform that streamlines regulatory compliance, improves efficiency, predicts risk, and provides best-in-class business intelligence reporting. Predict360 includes the following Risk Management applications: Enterprise Risk Management (ERM), Risk Management and Assessments, Risk Insights, Issues Management, Peer Insights, Third-Party Risk Management, and Quarterly Certifications and Attestations. Compliance applications are: Compliance Management, Compliance Monitoring & Testing, Complaints Management, Regulatory Change Management, Regulatory Examination and Findings Management, Policy & Procedure Management, and more. 360factors also offers Lumify360 - a KPI and KRI predictive analytics platform that enriches data, predicts performance, and works alongside any GRC. -
3
Onspring
Onspring GRC Software
Onspring is an award-winning GRC automation and reporting software. Our SaaS platform is known for flexibility and ease of use for end-users and administrators. Simple, no-code, drag-and-drop functionality makes it easy to create new applications, workflows, and reports independently without IT or developers. - Manage a centralized risk register with multiple hierarchies - Keep tabs on financial impacts & probabilities based on risk tolerance - Capture & relate financial, operational, reputational & third-party risks - Map controls to regulations, frameworks, incidents & risks - Remediate findings through workflows or the POA&M process Ready-made products get you started in as quickly as 30 days: - Governance, Risk & Compliance Suite - Risk Management - Third-party Risk - Controls & Compliance - Audit & Assurance - Policy Lifecycles - CMMC - BC/DR FedRAMP moderate environment available. -
4
StandardFusion
StandardFusion
A GRC solution for technology-focused SMB and Enterprise Information Security teams. StandardFusion eliminates spreadsheet pain by using a single system of record. Identify, assess, treat, track and report on risks with confidence. Turn audit-based activities into a standardized process. Conduct audits with certainty and direct access to evidence. Manage compliance to multiple standards; ISO, SOC, NIST, HIPAA, GDPR, PCI-DSS, FedRAMP and more. Manage vendor and 3rd party risk, and security questionnaires easily in one place. StandardFusion is a Cloud-Based SaaS or on-premise GRC platform designed to make InfoSec compliance simple, approachable and scalable. Connect what your organization does, with what your organization needs to do. -
5
LogicGate Risk Cloud
LogicGate
LogicGate’s leading GRC process automation platform, Risk Cloud™, enables organizations to transform disorganized risk and compliance operations into agile process applications, without writing a single line of code. LogicGate believes that flexible, easy-to-use enterprise technology can change the trajectory of organizations and the lives of their employees. We are dedicated to transforming the way companies manage their governance, risk, and compliance (GRC) programs, so they can manage risk with confidence. LogicGate’s Risk Cloud platform and cloud-based applications, combined with raving fan service and expertly crafted content, enable organizations to transform disorganized risk and compliance operations into agile processes, without writing a single line of code. -
6
Fusion Framework System
Fusion Risk Management
Fusion Risk Management's software, the Fusion Framework System, enables you to understand how your business works, how it breaks, and how to put it together again. Our platform provides easy, visual, and interactive ways to explore every aspect of your business so you can identify single points of failure and key risks. Achieve resilience with greater speed and efficiency with Fusion’s flexible and integrated suite of platform capabilities that can be tailored to best fit the needs of your organization. We meet you wherever you are on your journey for more resilient operations. - Map critical service and product delivery processes as they actually are - Leverage objective risk insights that help you audit, analyze, and improve your business operations - Plan, orchestrate, and measure risk management and resilience activities with confidence - Leverage automation to reduce the burden of manual, time-consuming, repetitive tasks, freeing teams for higher value activities -
7
Scrut Automation
Scrut
With Scrut, automate your risk assessment and monitoring, build your own unique risk-first infosec program, effortlessly manage multiple compliance audits, and demonstrate trust with your customers, all from a single window. Discover cyber assets, set up your infosec program and controls, continuously monitor your controls for 24/7 compliance, and manage multiple compliance audits simultaneously, all through a single window on Scrut. Monitor risks across your infrastructure and application landscape in real-time and continuously stay compliant with 20+ compliance frameworks. Collaborate with team members, auditors, and pen-testers with automated workflows and seamless artifact sharing. Create, assign, and monitor tasks to manage daily compliance with automated alerts and reminders. With the help of 70+ integrations with commonly used applications, make continuous security compliance effortless. Scrut’s intuitive dashboards provide quick overviews and insights. -
8
Felix
Felix
Felix (ASX:FLX) is a cloud-based procurement platform that transforms the way asset owners, builders and managers find, manage and engage third-party vendors. Centralise and streamline Vendor Management and Source-to-Contract (S2C) processes to significantly increase productivity, manage risk and reduce spend. Connect all the right people, tools, and information you need in the one platform. -
9
Quantivate
Quantivate
Since 2005, Quantivate has been helping organizations efficiently manage their governance, risk, and compliance (GRC) initiatives. Quantivate’s scalable technology and service solutions equip organizations of all sizes to make more strategic decisions, improve performance, and reduce costs. Learn about how Quantivate’s integrated platform can simplify GRC management at quantivate.com. -
10
Prevalent
Prevalent
The Prevalent Third-Party Risk Management Platform is a single solution that enables customers to automate the critical tasks required to manage, assess and monitor their third parties across the entire life cycle. The solution combines the following integrated capabilities to ensure third parties are secure and compliant: • Automated onboarding and offboarding • Profiling, tiering and inherent risk scoring • Standardized and custom vendor risk assessments with built-in workflow, task and evidence management • Continuous vendor threat monitoring • A network community of completed standardized assessments and risk intelligence • Compliance and risk reporting • Remediation management The solution is backed by expert professional services to help optimize and mature third-party risk management programs, and managed services to outsource the collection and analysis of vendor assessments. -
11
Whistic
Whistic
The best way to assess, publish, and share vendor security information. Automate vendor assessments, share security documentation, and create trusted connections—all from the Whistic Vendor Security Network. Once companies start using Whistic, they can’t imagine how they managed vendor security assessments or responded to questionnaire requests before. Avoid the black box security reviews of the past by openly sharing vendor security requirements and publishing profiles. Focus on establishing trust rather than chasing down spreadsheets. Initiate assessments, assign inherent risk, engage vendors, calculate risk scores and trigger reassessments—automatically. In the fast-paced business environment we’re living in, no one has time for the slow, outdated security review processes of the past. Access the security posture of thousands of businesses immediately with Whistic. -
12
Vendor360
Centrl
Vendor360, CENTRL’s Vendor Risk Management Software, streamlines the entire process of managing the 3rd party risk lifecycle. Through centralized, easy-to-use workflows, and powerful internal and external collaboration capabilities, Vendor360 provides you with the tools and content needed to identify, manage, assess and mitigate third party risks across all stages of your organization’s vendor life-cycle. Advanced and flexible third party risk management platform for aggregating your vendor data, automating your assessments and getting control over your vendor risk management process. -
13
SimpleRisk
SimpleRisk
SimpleRisk is a comprehensive, open-source risk management tool designed to streamline and optimize risk assessment processes for organizations of all sizes. With features like risk identification, assessment, scoring, and treatment, it provides a full lifecycle approach to managing risk. The platform includes intuitive dashboards, customizable risk metrics, and automated reporting tools to track and mitigate potential threats, from cybersecurity to operational risks. Known for its scalability, flexibility, and adherence to industry standards such as ISO 27005, SimpleRisk is both accessible for small teams and robust enough for complex enterprise needs. Its user-friendly interface, regular security updates, and support for third-party compliance frameworks make it a preferred choice for organizations looking to implement a cost-effective, efficient risk management solution that adapts to evolving risk landscapes.Starting Price: $5,000 USD/yr -
14
Wobot
Wobot
Rapidly onboard any CCTV cameras-All in one place. Collect actionable insights across teams and make better decisions, together. Our AI-driven video analytics platform enables you to not only select from pre-existing checklists but also provides flexibility to customize checklists based on industrial requirements. This helps you to monitor process compliance optimally. Wobot’s compatibility with all leading camera brands coupled with the user-friendliness of the platform helps in smooth integration and seamless onboarding of your existing cameras into our system to monitor day-to-day processes. Wobot.ai acts as a one-stop platform to view all your cameras and automate process compliance and remote monitoring in real-time. View all tasks and tickets on a single app. Dispense the power of visual insights from the control room back to your local team for informed decision-making. View the recorded or live camera footage on the app. -
15
RiskRecon
RiskRecon
Automated risk assessments tuned to match your risk appetite. Get the intimate risk performance assessments you need to efficiently manage your third-party risk. RiskRecon’s deep transparency and risk contextualized insights enable you to understand the risk performance of each vendor. RiskRecon’s workflow enables you to easily engage your vendors to realize good risk outcomes. RiskRecon knows a lot about your systems. Know what RiskRecon knows. Get continuous objective visibility of your entire internet risk surface, spanning managed, shadow and forgotten IT. RiskRecon knows a lot about your systems. Know what RiskRecon knows. Get continuous objective visibility of your entire internet risk surface, spanning managed, shadow and forgotten IT. See the intimate details of every system, the detailed IT profile and security configuration. We’ll even show you the data types at risk in every system. RiskRecon’s asset attribution is independently certified to 99.1% accuracy. -
16
UpGuard
UpGuard
The new standard in third-party risk and attack surface management. UpGuard is the best platform for securing your organization’s sensitive data. Our security ratings engine monitors millions of companies and billions of data points every day. Continuously monitor your vendors, automate security questionnaires, and reduce third and fourth-party risk. Monitor your attack surface, prevent data breaches, discover leaked credentials, and protect customer data. Scale your third-party risk program with UpGuard analysts, and let us monitor your organization and vendors for data leaks. UpGuard builds the most powerful and flexible tools for cybersecurity. Whether you’re looking to prevent third-party data breaches, continuously monitor your vendors, or understand your attack surface, UpGuard’s meticulously designed platform, and unmatched functionality helps you protect your most sensitive data. Hundreds of the world’s most data-conscious companies are scaling faster and more securely.Starting Price: $5,249 per year -
17
SecurityStudio
SecurityStudio
Simplify your vendor risk management program to ease the burden on your company and its employees. Standardize the process to easily locate all third and fourth-party vendors and keep track of those that pose a risk to your company. Defend against any risk created by your vendors, and against lawyers, regulators and customers if a breach occurs. Unlike other vendor risk management tools on the market, SecurityStudio doesn’t simply communicate risk. Through an easy-to-use automated workflow, SecurityStudio evaluates all third-party vendors and brings your weakest links to the surface. Then you have the power to accept, avoid or request remediation of each vendor. -
18
STREAM Integrated Risk Manager
Acuity Risk Management
STREAM Integrated Risk Manager is an award-winning GRC platform that allows organizations to centralize, automate, quantify and report on risk. It can be used for a variety of applications including cyber / IT risk management, enterprise risk management, operational risk management, BCM and vendor risk management. STREAM has been around for over 10 years and is available as a SaaS or on-premise deployment. It has been adopted by organizations around the world, across various industries including finance, energy, healthcare, manufacturing, legal and IT. Please contact us to discuss specific requirements or visit the Acuity website for more information. -
19
Panorays
Panorays
The fastest way to securely do business together. Automating Third Party Security Lifecycle Management. Gain a 360° view of the supplier through a combination of the hacker’s view and internal policy. The hacker’s view tests the posture just like a hacker would evaluate a company. The internal policy ensures that the supplier complies with security policies and practices. The most seamless end-to-end third party security workflow solution. Panorays’ rapid security ratings are based on an “outside-in” simulated hacker’s view of assets, combined with an “inside-out” view that checks that the supplier adheres to your internal company security policies. Panorays’ automated customized security questionnaires include only the questions that are relevant for each supplier, and you can track progress with a click. Choose from a built-in template or create your own. -
20
Ncontracts
Ncontracts
Ncontracts is a leading provider of SaaS-based risk management and compliance solutions financial services companies. Our GRC solutions help more than 4,000 banks, credit unions, mortgage companies, fintechs, and trusts achieve their risk management and compliance goals with a powerful combination of user-friendly, cloud-based software and expert services. Our suite of solutions covers all aspects of enterprise risk management, including vendor management, compliance, lending compliance, business continuity, audit and findings management, company culture alignment, and cybersecurity. Ncontracts was named to the Inc. 5000 fastest-growing private companies in America for the fourth consecutive year in 2022. -
21
MetricStream
MetricStream
Reduce losses and risk events with forward-looking risk visibility. Enable a modern and integrated risk management approach with real-time aggregated risk intelligence and their impact on business objectives and investments. Protect brand reputation, lower the cost of compliance, and build regulators and board’s trust. Stay on top of evolving regulatory requirements, proactively manage compliance risks, policies, cases, and controls assessments. Drive risk-aware decisions and accelerate business performance by aligning audits to strategic imperatives, business objectives and risks. Provide timely insights on risks and strengthen collaboration across various functions. Reduce exposure to third-party risks, make superior sourcing decisions. Prevent third-party risk incidents with continuous third-party risk, compliance and performance monitoring. Simplify and streamline entire third-party risk management lifecycle. -
22
RiskProfiler
RiskProfiler
RiskProfiler offers a comprehensive suite of products for Continuous Threat Exposure Management, addressing an organization's external attack surface. These include the Cyber RiskProfiler for cyber risk ratings, Recon RiskProfiler for External Attack Surface Management (EASM) capabilities, Cloud RiskProfiler for Cloud Attack Surface Management (CASM) that identifies actually exposed cloud resources and prioritizes risks, and Brand RiskProfiler for brand protection. Recon RiskProfiler is an advanced EASM and CASM solution with robust integrations across major cloud providers like AWS, Azure, and Google Cloud. It delivers comprehensive visibility into external cloud resources, enabling efficient identification, assessment, and management of vulnerabilities and risks. Vendor RiskProfiler is a comprehensive Cyber Risk and Vendor Risk Management solution that delivers company cyber risk ratings while enabling efficient sending, receiving, and validation of third-party vendor security.Starting Price: $4999 -
23
Global Risk Exchange
ProcessUnity
Protect your third-party digital ecosystem with a data-driven approach that provides complete portfolio visibility and predictive capabilities. Global Risk Exchange (formerly CyberGRX) delivers rich, dynamic assessments of third-party vendors at speed and scale so you can manage your evolving third-party ecosystem with a collaborative, crowd-sourced Exchange featuring a repository of validated and predictive assessment data. Using sophisticated data analytics, real-world attack scenarios, and real-time threat intelligence, we provide a complete portfolio analysis of your third-party ecosystem, helping you to prioritize your risks and make smarter decisions. Identify trends and create benchmarks by leveraging structured data and actionable intelligence. -
24
VivoSecurity
VivoSecurity
Regulators and management need 3rd party assessment that are accurate and not based upon opinions or assumptions. VivoSecuiry enables our customers to satisfy regulators by assessing true 3rd party risk, which is the probability that one of their vendors will have a data breach, obsoleting the use of questionnaires, maturity scores and SOC2 reports. The risk from 3rd parties is from breaches caused by the sheer number of vendors. VivoSecurity quantifies this risk twice per year, with an aggregate forecast. We help senior management set risk appetite goals with a testable forecast of data breach frequency. We help cybersecurity teams identify the few vendors that represent most of the risk, we then quantify the value of mitigation. Finally, we satisfy regulators with an accurate and documented process for vendor assessment using an empirical and transparent regression model for probability of data breach. -
25
Rescana
Rescana
Successful risk programs rely on accuracy in the process of discovering and managing assets and only then assessing the risks. Rescana's artificial intelligence preforms asset attribution, thereby keeping false positives to a minimum. Rescana's form engine gives you the flexibility you need to conduct your risk surveys. Use and customize our built in forms, or upload your own to make the perfect survey. Infinitely scalable, our army of collector bots scour the deepest corners of the web in search of your assets and data on a daily basis. With Rescana you are always up to date. Integrate into your procurement system, and make sure vendors are classified correctly from the beginning. Rescana's flexible survey will ingest any existing questionnaire, and is feature rich - providing the best experience for you and your vendor. Communicate the vulnerabilities to your vendors with ease, re-certify them quickly with pre filled forms.Starting Price: $25 per month -
26
Riskpro
Riskpro India
Third party risk management (TPRM) is a structured approach to analyze and control risks arising to the organization from third parties. Mainly third parties are: Vendors Customers Joint ventures Counterparties Fourth Parties Third-party relationships can be a significant source of enterprise risk. The propagation of third-party partners, regulatory pressure, and the complexity of cyber-related risks has led companies to dedicate more time and attention to the potential risks by third parties. They enable companies to be flexible and competitive in a global business environment. These relationships often allow companies to delegate important tasks so that they can focus on their core competencies. With the benefits gained from third parties comes related risks that pose significant threats to a business, such as cyber breaches, business continuity challenges, or reputational damage.Starting Price: $750 per year -
27
Triplicity
Phinity Risk Solutions
With Triplicity’s powerful cloud software, you can easily automate your third-party risk management. Our third-party risk manager helps ensure that your company’s risks are fully understood and well managed, applying a risk-based approach to your third-party vendors. Triplicity automates all your processes, dramatically reducing your risk and improving strategic relationships with your key third-party vendors. Compare and rate your third parties by risk, category, business unit, or even the application of their agreed service. Improve reliability and reduce your risk by ensuring you continue to work only with parties that comply with industry best practices. Improve your performance by running several thousand third-party assessments simultaneously, and ensure all parties are assessed. Triplicity is an IT Vendor Risk Management (IVRM) solution with a difference. We first profile each third party to provide their inherent risk specific to your business. -
28
Risk Ledger
Risk Ledger
The Risk Ledger platform gives clients all the tools they need to run a comprehensive, cyber security-led, third-party risk management programme against their entire supply chain at speed and at scale while making it simple, free and fast for third parties to engage with the process and improve their risk management maturity. Our unique secure network model allows every organisation to both run a third-party risk management programme and respond to client risk assessments, facilitating a network of trust relationships between organisations on the platform. Organisations running a third-party risk management programme on the Risk Ledger platform benefit from: - continuous monitoring of risk controls implemented in their supply chain - visibility beyond third-parties to fourth, fifth and sixth parties - procurement cycles reduced by up to 80% - Increased supplier engagement - low per-supplier costs -
29
Blue Umbrella GRC
Blue Umbrella
Identify and manage third-party risk. A modular, best-in-class, plug & play compliance platform to effectively manage multiple areas of third-party risk. Buy Only What You Need. Blue Umbrella GRC is designed to scale as your third-party risk management program matures and expands. Get started today with one module or create a bundle and build from there. Streamline your data. Forget using multiple tools and systems to manage third-party risk. Blue umbrella grc centralizes it all. Get started today. Sign up online and get started within minutes with a hassle-free setup and friendly user interface. Trusted expertise. Tap into the gold standard of third-party risk management questionnaires, including anti-bribery and corruption, data privacy, ccpa, it security and more. Automate the process Each module is built so you can easily identify risk in your vendor relationships and take actionable steps to remediate.Starting Price: $325 per month -
30
Scale your risk and security functions so you can operate through challenges with confidence. The global threat landscape continues to evolve each day, bringing new and unexpected risks to people and organizations. The OneTrust GRC and Security Assurance Cloud brings resiliency to your organization and supply chain in the face of continuous cyber threats, global crises, and more – so you can operate with confidence. Manage increasingly complex regulations, security frameworks, and compliance needs with a unified platform for prioritizing and managing risk. Gain regulatory intelligence and manage first- or third-party risk based on your chosen methodology. Centralize policy development with embedded business intelligence and collaboration capabilities. Automate evidence collection and manage GRC tasks across the business with ease.
-
31
ShieldRisk
ShieldRisk AI
ShieldRisk is an Artificial Intelligent powered platform for third-party vendor risk assessment with speed and accuracy. The platform is a single, unified platform, executing vendor audits on global security & regulatory framework including GDPR, ISO 27001, NIST, HIPAA, COPPA, CCPA, SOC 1, SOC 2. ShieldRisk AI enables the analysis of auditing and advisory functions, involving time savings, faster data analysis, increased levels of accuracy, more in-depth insight into vendor security posture. ShieldRisk, in consistence with global compliance standards, helps the organizations transform cybersecurity programs to enable and provide risk free digital business strategies. We help organizations measure their vendors’ digital resilience, maximize recoveries, and lower their total cost of risk, while providing cybersecurity build-or-buy decisions. Our family of single and dual view platforms are easy to use and provide the clearest, most accurate screening and security analysis. -
32
Assess360
CENTRL
Streamline due diligence work and risk assessments and transform your practice to serve more clients with a best-in-class cloud platform. Identify, analyze, and mitigate risks with full transparency and control. Comprehensive out-of-the-box yet highly configurable workflows and controls framework provide flexibility while driving efficiencies. Through the cloud platform, process & assessment automation. Upload proprietary questionnaire or use standard templates from library and customize. Schedule questionnaires and automatically publish to partners. Automate grading with proprietary scale. Assess360 is a single application for all parties (responders use Assess360 at no cost) making the process more efficient for you and your third parties. Third parties can assign different sections to different groups with complete approval workflows. Third parties can collaborate internally and with you. They can easily attach documents and track their progress. -
33
TrustElements
TrustElements
TrustElements helps to mitigate risk and prioritize investments. Your cyber resiliency score is defined in a percentage after analyzing all loads of data your company owns. TrustElements maps your results to industry frameworks (NIST, CIS, MITRE) and helps to establish a golden standard of cyber resilience by continuously assessing your organization exposure to risks. The TE platform enhances decision making based on your business context and helps to better allocate financial resources. Communicate cybersecurity strategy to the C-level and Board of Directors to strengthen the decision making in Security, IT, and Risk Management. Whether your challenge is vendor risk management, tight security budgets, overcoming resource obstacles or applying the right level of protection and risk management, we have your back to make your company propel. -
34
Vendorly
Altisource
Vendorly is a vendor management solution that helps meet the regulatory compliance requirements as outlined by the OCC and CFPB relating to third-party risk management. Our vendor oversight services can be managed by Vendorly or your internal team. SIMPLIFY OVERSIGHT: Centralize and consolidate all your vendors in a single repository with an intuitive SaaS-based solution and best in class operational support. RISK MANAGEMENT: Seamlessly integrated fraud prevention tool that helps mitigate third-party wire fraud risks for lending and banking industries. POWER OF THE NETWORK: With over 60,000 registered vendors, we bring new efficiencies from real-world experiences. -
35
SecurityScorecard
SecurityScorecard
SecurityScorecard has been recognized as a leader in cybersecurity risk ratings. Download now to see the new cybersecurity risk rating landscape. Understand the principles, methodologies, and processes behind how our cybersecurity ratings work. Download the data sheet to learn more about our security ratings. Claim, improve, and monitor your scorecard for free. Understand your vulnerabilities and make a plan to improve over time. Get started with a free account and suggested improvements. Gain a holistic view of any organization's cybersecurity posture with security ratings. Leverage security ratings for a variety of use cases, including risk and compliance monitoring, M&A due diligence, cyber insurance underwriting, data enrichment, and executive-level reporting. -
36
Aravo
Aravo Solutions
Harness the power of Aravo’s flexible, end-to-end workflow automation and AI decision making support. Built on our award-winning Saas platform, you’ll always be agile in a rapidly changing business and regulatory environment. Whether you’re just coming off spreadsheets and need to stand up a program quickly and confidently, or you need a solution mapped to your own defined third-party governance framework, we have the right solution for your program maturity, size, and budget. Leverage our unparalleled experience of delivering successful third-party risk management programs for many of the world’s most respected brands. No other provider has the scope of coverage across supplier risk and performance, third-party management and IT vendor risk management. -
37
Kroll Compliance
Kroll
Third parties, customers, and partners present legal, reputational, and compliance risks to your organization. The Kroll Compliance Portal arms you with the capabilities to control those risks at scale. Relative risk can dictate the need for a closer look. Emailing back and forth with analysts and downloading and saving files can slow you down, create a gap in the audit trail, and leave you vulnerable to information security risks. Take the due diligence process out of emails and file folders and bring order with the Kroll Compliance Portal. Many compliance programs become time and resource intensive because of manual processes or inflexible software. Put an end to that with the Kroll Compliance Portal’s Workflow Automation. Your business demands efficient third party onboarding. You need an accurate risk assessment. The Kroll Compliance Portal Questionnaire accelerates the onboarding process through automation, tracking and scoring in line with your risk model. -
38
DoubleCheck
DoubleCheck Software
DoubleCheck Risk Management system is a powerful, cloud-based platform for managing enterprise risks independently or in an integrated governance, compliance, and audit suite. Highly flexible and fully configurable, DoubleCheck’s Enterprise Risk Management software enables all stakeholders to identify, manage, and rate diverse risks that arise from various sources. Some key benefits of DoubleCheck Risk Management system include policy and document management, testing, issue creation, and the ability to carry out risk surveys to establish status. Record, monitor and review vendors or partners that interact with a firm. Vendors and suppliers are critical to your business’s success. It is important that we know everything about them and can also be prepared in case these third parties are not up to expectations or fail to perform, which can have a negative effect on your operations, profitability, and good reputation. -
39
ISG GovernX
ISG
ISG GovernX® is the first third-party management platform that allows you to proactively optimize the value of your supplier relationships, mitigate risks and manage the contract lifecycle with speed and agility. Get control of your third-party environment, improve supplier performance and decrease spend. Leverage ISG’s knowledge and insights borne from more than $460 billion worth of enterprise client-supplier transactions. Automate the entire lifecycle of third-party risk management. Minimize exposure to financial, reputation, operational, and identify risk exposure from your third parties. From onboarding, assessments, and remediations to performance monitoring and reviews, gain efficiency by automating your workflow, integration, and on-going notifications. Maintain insight and oversight of your third-party portfolio. Orchestrate and manage your complex environment of third-party relationships in one easy-to-use dashboard. -
40
Venminder
Venminder
Venminder is loaded with all the features you need for effective third-party risk management. Complete inherent risk assessments to determine which of your vendors require attention. Streamline the onboarding, ongoing management and offboarding of your vendors with dedicated workspaces. Manage each stage in our purpose-built configurable software platform. Risk assessments are an extremely important activity to complete on your vendor's products as they provide you with the level of risk a product will or is posing to your organization. The Venminder platform enables you to create custom risk assessment questions, invite unlimited internal users to contribute answers, apply scoring preferences, create clear and concise risk rating reports and more. Features also include template creation, progress monitoring and residual risk capabilities. -
41
VISO TRUST
VISO TRUST
VISO TRUST's AI-powered third-party risk platform lets your security team effortlessly access risk intelligence for any number of third parties. Instantly assess all your third parties without hiring additional analysts and take action to reduce risk without reading documents and analyzing surveys. Leverage data from thousands of vendors to gain unparalleled risk intelligence. VISO TRUST is the only SaaS third-party cyber risk management platform that delivers the rapid security intelligence needed for modern companies to make critical risk decisions early in the procurement process. Frictionless due diligence simplifies an otherwise complex process and allows companies to effortlessly assess any number of third parties. Leverage curated AI to extract insights from source artifacts and automatically determine vendor security posture without any user interaction. Gain a comprehensive overview of your organization's cyber risk posture and make data-driven decisions to reduce risk. -
42
Black Kite
Black Kite
The Black Kite RSI follows a process of inspecting, transforming, and modeling collected from a variety of OSINT sources (internet wide scanners, hacker forums, the deep/dark web and more). Using the data and machine learning, the correlation between control items is identified to provide approximations. Operationalize with a platform that integrates with questionnaires, vendor management systems and process workflows. Automate adherence to cybersecurity compliance requirements and reduce the risk of a breach with a defense in depth approach. The platform uses Open-Source Intelligence (OSINT) and non-intrusive cyber scans to identify potential security risks, without ever touching the target customer. Vulnerabilities and attack patterns identified using 20 categories and 400+ controls, making the Black Kite platform 3x more comprehensive than competitors’. -
43
Cyber360
CENTRL
Streamline cybersecurity assessments and transform your practice to serve more clients with a best-in-class cloud platform. Identify, analyze, and mitigate cybersecurity risks with full transparency and control. Comprehensive out-of-the-box yet highly configurable workflows and controls framework provide flexibility while driving efficiencies. Design a repeatable cybersecurity assessment process that maps to your organization needs. Gain visibility if your organization’s risk profile across business units, third parties, regions. Collect and store all assessments, documents, policies, issues in a centralized repository. Proactively manage exceptions through analytics, alerts and collaboration. Start with pre-built and pre-seeded industry assessment templates, or upload your own standard practice questionnaire. Multiple modes for assessments to suit business needs, self assessments, onsite assessments, and more. -
44
Dow Jones Risk & Compliance
Dow Jones Risk & Compliance
Dow Jones Risk & Compliance is a global provider of best-in-class risk data, web-based software applications and scalable due diligence services that help organizations manage risk and meet regulatory requirements related to financial crime, third-party risk management, sanctions and international trade. Built on the legacy of one of the world’s most trusted newsrooms, Dow Jones Risk & Compliance combines the expertise of a multilingual research team with industry-leading data scientists and technologists to provide actionable content structured specifically for compliance needs. Our solutions were developed in partnership with top legal and political advisors — including former regulators — to help our clients maintain consistency across global business units and teams. -
45
COBRA
C2 Cyber
Supply chains are complex, organic networks of relationships that grow extensively over time. Statistics show that two-thirds of security breaches originate from third parties. C2 Cyber’s Cobra platform immediately assesses the inherent risk of a supplier, saving time from the start. It then recommends a tier of service for each supplier that matches both the risk presented and the client’s risk appetite. -
46
D&B Risk Analytics
Dun & Bradstreet
Risk, procurement, and compliance teams across the globe are under pressure to deal with geopolitical and business risks. Third-party risk exposure is impacted by rapidly scaling complexity in domestic and cross-border businesses, along with complicated and diverse regulations. It is extremely important for companies to proactively manage their third-party relationships. An AI-powered solution to mitigate and monitor counterparty risks on a continuous basis, this cutting-edge platform is powered by D&B’s Data Cloud with 520M+ Global Business Records and 2B+ yearly updates for third-party risk insights. With high-risk procurement alerts and multibillion match points, D&B Risk Analytics leverages best-in-class risk data to help drive informed decisions. Perform quick and comprehensive screening, using intelligent workflows. Receive ongoing alerts of key business indicators and disruptions. -
47
Trustpage
Trustpage
Hundreds of teams use Trustpage to automate questionnaires, share documents, manage security reviews, and more. Determine if vendors meet your security requirements and compare solutions to determine which tools you can trust with your data. No need for contractors to answer security questionnaires, leverage Trustpage's question-answering extension to complete entire questionnaires in minutes. Empower everyone on your team to accurately answer security questions when they source approved answers using the Trustpage browser extension. Beat out the competition when you streamline the review process and provide a seamless InfoSec experience from start to finish. Automate NDAs, gain visibility into the security process, and reduce back-and-forth between teams so deals move more quickly. Connect your Trust Center with Slack, Salesforce, and Hubspot to incorporate security processes into the tools your team is already using.Starting Price: $50 per month -
48
Know Your Vendor Solution
Know Your Vendor Solution
Using old-fashioned tools to manage vendors can be tedious and source of mistakes. It’s often non-standardized and not reliable. Know Your Vendor™ solution helps our clients mitigate supply chain risks by providing a consolidated panorama for due diligence on third parties. Due diligence is conducted to insure integrity in the supply chain and prior to making important business decisions in areas such as corporate mergers/acquisitions, or partnership. Due diligence is a deep background check on a prospect, be it a corporation, its principals or a specific individual. -
49
ClearOPS
ClearOPS
ClearOPS helps buyers and sellers manage their vendors and satisfy due diligence requirements. ClearOPS is a full-circle third-party risk platform. With ClearOPS you can track and monitor all of your vendors, send assessments and upload evidence, and respond to their customer's vendor management processes. Vendor security questionnaires are like a hot potato, no one wants to do them. So our A.I. takes the first pass saving massive amounts of time. As a system of record, you never have to watch the information about your own business walk out the door. You won the customer, now what? Well, you have to retain them, and maintaining that healthy trust is what we are all about. ClearOPS manages privacy and security operations information so that it is easily accessible and up to date. Simple third-party risk management software solution. Inspire your colleagues with empowerment and assess your vendors on your schedule.Starting Price: $500 per month -
50
ThirdPartyTrust
ThirdPartyTrust
TPRM by ThirdPartyTrust is your one pane of glass risk dashboard: An end-to-end document repository and workflow automation tool to scale your vendor risk management program. Leverage a network of 17,000+ existing vendor profiles to fast forward your reviews and stay proactive with continuous monitoring. Beacon is the one source of truth for third party vendors: A centralized security profile comprising all your questionnaires, certifications, and attestations. Answer them once and easily share the latest versions any time your team receives a security assessment request. The tool will help you manage your end-to-end process, reducing the time spent on requesting and reviewing security documents.Starting Price: $120000.00/year