Core Components
-
Supplier Landscape Mapping
Comprehensive supplier inventory -
Risk Classification
Categorization by criticality and exposure -
Contract Review
Assessment of security clauses in agreements -
Gap Analysis
Against NIS2, DORA, and ISO 27036
Deliverables
-
Supplier Register
With risk classification and status overview -
Assessment Reports
Per supplier with identified gaps -
Action Plan
Prioritized interventions with timeline -
Security Requirement Templates
Contract annexes and requirement specifications
Customer Value
1
Reduced Third-Party Risk
Structured management of supplier risks
2
Regulatory Assurance
Meets NIS2 and DORA supply chain requirements
3
Stronger Supplier Control
Clear requirements, follow-up, and traceability
4
Predictable Supply Chain
Reduced risk of disruption and surprises
