Vendor Management

SecuVal gives you the deep, continuous risk insight necessary to rapidly understand and act on your risks. Point our scans at any enterprise, and we return to you with a deep risk assessment spanning 11 security domains such as – software patching, network filtering, ip reputation, web encryption, application security, and more.


We will be scanning your vendors on a near daily basis on their cyber security from an external perspective. If they drop below a certain risk level we will engage and advise the vendor so that they can solve their issues and keep you safe. Should vendors have a critical issue, we will inform you immediately.

Full Service

With our full service we will manage your vendors on a daily basis and work with them to make sure that they are compliant to your cyber security standards. We will also provide you with a vendor portfolio overview report and detailed vendor reports every month                    .

  • Monthly Portfolio Reports
  • Monthly Vendor Reports
  • Daily Proactive Management

Quarterly Service

With our quarterly service we will scan these vendors on a near daily basis, and provide you with a score and insight on the vendor portfolio overview. We will work with your vendors once a quarter and reach out to them should they fall below your security standards. Detailed vendor reports are provided once every quarter.

  • Monthly Portfolio Reports
  • Quarterly Vendor Reports
  • Proactive Management once per Quarter

Yearly Service

With our yearly service we will scan these vendors on a near daily basis, and provide you with a score and insight on the vendor portfolio overview. But we will work with your vendors only once a year and reach out to them should they fall below your security standards. Detailed vendor reports are provided only once a year.

  • Monthly Portfolio Reports
  • Yearly Vendor Reports
  • Proactive Management once per Year

For a complete vendor management service we have provided three different service levels to match your needs. These services can be mixed and matched to your vendor risk categories.  For example you might want your business critical vendors fully managed and your low risk vendors only reported on once a year.

Features

For all our service levels we will provide you with a portfolio overview of your vendor landscape. Detailed vendors reports and proactive management. The service levels determine the frequency. We divide your vendor landscape in risk levels, and to this risk level we can assign a service level.

Porfolio Reports

We will send you a portfolio report once every month. In this report you will see a overview of the vendors we scan. In here you will see the scoring of your vendors (0-10) and if they have dropped or raised in their scoring. We will also give you warnings and advice weather the vendor is posing a threat to you.

Vendor Reports

Depending on your service level we will send detailed vendor reports once every month / quarter or year. In these reports you can see in great detail all the scans we do on the vendor and how their cyber risk score is build up. We will also show you any particular assets from the vendor that might be of importance to you. For example the login of your vendor which your colleagues use on a daily basis.


Proactive Vendor Management

After we have scanned the vendors, there is still a lot of work to be done. Because gaining insight is only the first step. Depending on the service level we will help you manage your vendors in terms of cyber security and compliance. So for example when one of your most critical vendors drops below your security standards we will inform them of the issues we detected, and make sure they do not pose a threat to your company. In a worst case scenario we might advice you to (temporarily) stop all services with this vendor in order to protect your companies assets and continuity.

Powered by: