Vendor & Third Party Risk USA

Aravo delivers market-leading SaaS solutions for managing third party risk and compliance at scale.

We help Global 2000 companies protect their business value and reputation by managing the risks associated with third parties and suppliers, and to build business value by ensuring that their third party relationships are optimized.

Aravo has assembled unique domain expertise and best practice approaches from more than 16 years of delivering successful implementations to global companies with the most complex supply and third party networks in the world.

Leading brands count on Aravo for end-to-end enterprise third party risk management together with specialist applications to support anti-bribery and anti-corruption, data privacy and security, responsible sourcing, and registration and qualification/know your supplier programs.

Providing unrivalled regulatory agility and ease-of-use, together with actionable executive reporting, Aravo supports a user base of more than 95,000 corporate users and 4 million third party users in 33 languages and 154 countries. Aravo is headquartered in San Francisco, with offices and partners across the US, Europe and Asia.

BitSight Technologies is transforming how companies manage information security risk with objective, evidence-based security ratings. The company’s Security Rating Platform continuously analyzes vast amounts of external data on security behaviors in order to help organizations manage third party risk, benchmark performance, and assess and negotiate cyber insurance premiums. For more information, please visit www.bitsighttech.com/ or follow us on Twitter (@BitSight).

Certainty is a highly prized commodity in business. Data might be getting bigger all the time, but this only makes extracting value from it more difficult.

Bureau van Dijk captures and treats private company information for better decision making and increased efficiency.

With information on over 200 million companies, we are the resource for company data. A key benefit of our information is how simple we make it to compare companies internationally.
Our information includes:

– What companies do, how they’re performing and the people that run them
– Financial data, legal entity details, M&A activity and news
– Corporate structures and ownership

You can access our information via a range of interfaces that are designed to help different business challenges and streamline workflows. Many of our customers blend our information with their own internal data for superior insight.

Register for your free trial at bvdinfo.com

CyberGRX provides the most comprehensive third-party cyber risk management platform to cost-effectively identify, assess, mitigate and monitor an enterprise’s risk exposure across its entire partner ecosystem. Through automation and advanced analytics, the CyberGRX solution enables enterprises to collaboratively mitigate threats presented from their increasing interdependency on vendors, partners and customers. CyberGRX is based in Denver, CO.

Grant Thornton LLP’s Risk Advisory Services works to help protect and drive enterprise value for our clients. We aim to develop and deploy business strategies that align with your approach to risk and your organization’s strategic priorities. We bring expertise in creating risk management programs and holistic solutions to address strategic, operational, regulatory, compliance and cyber risk inefficiencies.

Third party risk management is an area of growing concern today. Organizations rely on third parties for a variety of reasons – cost savings, revenue enhancement, or increased expertise to gain a competitive edge. While it is true third parties can help realize many business benefits, they can also introduce significant risks. These risks may include failure to protect sensitive company and client data, inability to meet business operational objectives, failure to meet your organization’s compliance requirements, or cause reputational damage based on how your third party is perceived in the industry. If these risks aren’t properly managed, it could lead to regulatory fines and penalties, lost customers or decreased revenue. Learn more about our work and how we protect value at www.grantthornton.com/risk

Grant Thornton LLP is the US member firm of Grant Thornton International Ltd, one of the world’s leading organizations of independent audit, tax and advisory firms.

IHS Markit (Nasdaq: INFO) is a world leader in critical information, analytics and solutions for the major industries and markets that drive economies worldwide. The company delivers next-generation information, analytics and solutions to customers in business, finance and government, improving their operational efficiency and providing deep insights that lead to well-informed, confident decisions. IHS Markit has more than 50,000 key business and government customers, including 85 percent of the Fortune Global 500 and the world’s leading financial institutions. Headquartered in London, IHS Markit is committed to sustainable, profitable growth.

Opus was founded on a simple premise: that faster, better decisions in compliance and risk management could give businesses an extraordinary advantage in the marketplace.

Today, the world’s most respected, global corporations rely on Opus to free their business from the complexity and uncertainty of managing customer, vendor, and third-party risks.

By combining the most innovative SaaS platforms with unparalleled data solutions, Opus turns information into action so your business thrives.

Prevalent is the leader in third-party risk management and cyber threat intelligence, helping global organizations manage and monitor the security threats and risks associated with third and fourth-party vendors. With the release of Prevalent Synapse™, organizations now have a purpose-built, unified platform that reduces both risk and cost in a shared assessment model, leveraging standardized content, automation, and threat intelligence.

SecurityScorecard provides the most accurate security risk rating for any organization worldwide. The proprietary SaaS platform helps enterprises gain operational command of the security posture for themselves and across all of their partners and vendors. It provides continuous, non-intrusive monitoring for any organization including third and fourth parties. The platform offers a breadth and depth of critical data points not available from any other service provider including a broad range of risk categories such as Application Security, Malware, Patching Cadence, Network Security, Hacker Chatter, Social Engineering, and Passwords Exposed.

Compliance Education Institute will be participating at the Vendor & Third Party Risk USA Congress.

ProcessUnity’s cloud-based solutions help organizations of all sizes automate their risk and compliance programs. Our highly configurable, easy-to-use tools significantly reduce manual administrative tasks, allowing customers to spend more time on strategic risk mitigation. As a software-as-a-service technology, ProcessUnity deploys quickly with minimal effort from customers and their IT resources. The inherent efficiency our technology delivers faster, better results, and the ability to scale governance, risk, and compliance programs over time. ProcessUnity’s suite of applications includes Third-Party Risk Management, Policy and Procedure Management, Enterprise Risk Management, Regulatory Compliance Management, Product and Service Offer Management, and more. Learn more at www.processunity.com.