Risk & Assessment

Third Party Risk Management

Knowing — and governing — the risk your suppliers carry on your behalf, from onboarding through to exit.

Book a gap analysis

Your resilience is only as strong as your supply chain. We help you build a proportionate third-party risk programme: tiering suppliers by criticality, assessing them consistently, and monitoring the ones that matter most.

We design the process, the questionnaires, and the governance — and can run assessments for you — so that supplier risk is a managed, evidenced part of your operating model rather than a once-a-year scramble.

What's included

  • Supplier tiering and inherent-risk model
  • Assessment questionnaires and review workflow
  • Contractual and exit-risk guidance
  • Ongoing monitoring and reporting design

Outcomes

  • A defensible view of supply-chain exposure
  • Consistent, proportionate supplier assurance
  • Evidence ready for auditors and regulators

Frameworks & standards

ISO 27001 DORA NIST CSF

Ready to scope Third Party Risk Management for your organisation?

Book a gap analysis
Related services

Security Maturity Assessment

A measured, evidence-based read on where your programme stands today — and a prioritised path to where it needs to be.

OT Cybersecurity Risk Assessment for Smart Buildings

Bringing assurance to the operational technology behind connected buildings — where IT, OT, and physical systems converge.

Google Workspace Security Assessment

A focused review of your Google Workspace tenant — configuration, identity, sharing, and data controls hardened to best practice.