Analyst Insight: The Gartner® Market Guide for IT Vendor Risk Management Solutions

Prevalent Extends Sources of Vendor Risk Intelligence with Newest Release

Prevalent TPRM Platform v3.20 and Vendor Threat Monitor v2.3 enrich vendor profiles, integrate with additional monitoring sources, and incorporate financial and credit scoring.
Alastair Parr
Senior Vice President, Global Products & Services
September 15, 2020
News prevalent tprm v3 20 vtm 2 3 0920

Silos are the bane of every organization’s existence. This is especially true in vendor risk management, where siloed intelligence can severely limit your risk visibility. Our latest releases, Prevalent TPRM Platform v3.20 and Vendor Threat Monitor v2.3 are all about knocking down these silos with new sources of vendor risk intelligence.

The new releases deliver:

  • Expanded sources of third-party risk intelligence to help customers make better-informed risk-based decisions
  • Key vendor information centralized into a single location to simplify vendor lifecycle management
  • Automated rules and simplified workflows that accelerate risk reviews and remediations

Financial and Credit Monitoring Add a New Dimension of Risk to Better Inform Sourcing Decisions

Gaining regular views into the financial and credit health of your top-tier vendors can provide proactive insights into whether or not they are viable or could present possible future supply chain disruptions. Sourcing the lowest-risk solutions for your organization can be complicated and risky without a clear picture of the vendor’s financial and credit history.

Prevalent Vendor Threat Monitor v2.3 introduces financial reporting, enabling the monitoring of credit scores and financial risks for organizations within North America alongside the cyber and business risks already available in the solution. This new capability taps into financial information from a global network of millions of businesses across 160+ countries, and accesses five years of organizational changes and financial performance – including turnover, profit and loss, shareholder funds, and more. This enhancement enables companies to screen new vendors, monitor their existing vendors beyond typical cyber risks, and evaluate vendor health for more informed sourcing decisions.

Vendor Financial Profile

The new financial profile includes credit summary information and registration data for all monitored entities.

Enhanced Entity Profile Simplifies Vendor Lifecycle Management

Many organizations struggle to correlate vendor information housed in multiple tools outside of the vendor risk management system (e.g., in a D&B Hoovers database or procurement platform). To properly manage a vendor from cradle to grave, it’s necessary to centralize all important information into a single, authoritative source.

With TPRM Platform v3.20, Prevalent has introduced a redesigned entity profile page with a new feed that presents valuable company-specific information – such as head office location, ownership, revenue, SIC code, and fiscal year end – alongside centralized assessment status, upcoming submissions, risks and tasks, and mapping of fourth parties used by the vendor. This new entity page delivers a complete view of a vendor’s key details, helping you gain greater visibility and reducing the time required to manage vendors.

Entity Profile
The new entity profile provides a consolidated view of entity activity.

Available for download in a pdf summary format, it’s simple to share a complete snapshot of each vendor with internal or external stakeholders.

Entity Profile Report
New exportable PDF reporting from the entity profile page makes sharing key details about vendors with multiple stakeholders a snap.

BitSight Integration Provides an Additional Source of Cyber Risk Intelligence

The Prevalent Third-Party Risk Management Platform was the first solution to fully integrate the results of assessments with native continuous monitoring for a complete 360-degree view of vendor risk. With v3.20, Prevalent has extended the sources of continuous monitoring by introducing the ability to import BitSight summary risk data into the Prevalent Platform. With this integration, existing BitSight customers can:

  • See vendor overall risk scores on a scale of 250-900
  • Review letter ratings (A-F) for vendors in each domain area, along with explanations using BitSight terminology
  • Manually create risks based on monitoring results
  • Flag tasks for follow-up

The overall BitSight score and domain scorings can also be integrated into the Prevalent Vendor Threat Monitor (VTM) monitoring profile, enabling customers to augment the cyber risk data gained from BitSight with the business and financial risk data from Prevalent VTM. This integration extends the sources of cyber monitoring intelligence available to customers in the Prevalent Platform, and enables BitSight customers to gain a complete and integrated TPRM solution. Learn more in the BitSight Connector data sheet.

Prevalent BitSight Integration
BitSight ratings are presented alongside VTM data, providing a consolidated view of potential risk with the ability to drive remedial actions.

For more information on this release – including addition enhancements to ActiveRules, and answer-by-answer questionnaire review – please see the What’s New document or read the Release Notes on the Prevalent Customer Portal.

Leadership alastair parr
Alastair Parr
Senior Vice President, Global Products & Services

Alastair Parr is responsible for ensuring that the demands of the market space are considered and applied innovatively within the Prevalent portfolio. He joined Prevalent from 3GRC, where he served as one of the founders, and was responsible for and instrumental in defining products and services. He comes from a governance, risk and compliance background; developing and driving solutions to the ever-complex risk management space. He brings over 15 years’ experience in product management, consultancy and operations deliverables.

Earlier in his career, he served as the Operations Director for a global managed service provider, InteliSecure, where he was responsible for overseeing effective data protection and risk management programs for clients. Alastair holds a university degree in Politics and International Relations, as well as several information security certifications.

  • Ready for a demo?
  • Schedule a free personalized solution demonstration to see if Prevalent is a fit for you.
  • Request a Demo