Third-Party/Supply Chain Risk

MetricStream specializes in enterprise and cloud applications for Governance, Risk, Compliance, and Quality Management. MetricStream's applications and solutions improve business performance by strengthening risk management, corporate governance, regulatory compliance, vendor governance, and quality management for users across many industries, including Financial Services, Healthcare, Life Sciences, Energy and Utilities, Food, Retail, CPG, Government, Hi-Tech and Manufacturing. MetricStream is headquartered in Palo Alto, California, maintains operations and research and development (R&D) center in Bangalore, India, and conducts sales and operational support through offices in cities spanning the globe.

SecurityScorecard is an information security company focusing on third party management and IT risk management. SecurityScorecard provides a platform designed to rate cybersecurity postures of corporate entities through the scored analysis of cyber threat intelligence signals.

BitSight Technologies transforms how companies manage information security risk with objective security ratings through its Security Rating Platform that continuously analyzes external data on security behaviors, helping organizations to manage third-party risk, benchmark performance, and assess and negotiate cyber insurance premiums.

SecZetta provides enterprise organizations with an identity risk and lifecycle management platform to understand, manage, and reduce the risks associated with non-employee populations from third-party organizations (contractors, affiliates, agents, etc.).

CyberGRX provides a comprehensive third-party risk management platform to cost-effectively identify, assess, mitigate and monitor an enterprise's risk exposure across its entire partner ecosystem. Through automation and advanced analytics, the CyberGRX solution enables enterprises to collaboratively mitigate threats presented from their increasing interdependency on vendors, partners and customers.

SecureLink specializes in managing secure third-party access and remote support for both enterprise companies and technology providers.On February 23rd, 2022, SecureLink was acquired by Imprivata. Terms of the transaction were not disclosed.

Panorays automates third party security management. The platform enables companies to easily view, manage and engage on the security posture of their third-parties, vendors, suppliers, and business partners.

Prevalent provides a third-party risk management and cyber threat intelligence platform for global organizations to manage and monitor security threats and risks associated with third and fourth-party vendors.

SureCloud provides Governance, Risk and Compliance solutions for enterprises. The company's Integrated Risk Management approach assists with managing basic regulatory compliance drivers, as well as with diagnostic dashboards.

Axis Security develops cloud-based cybersecurity technology to secure enterprise applications.