Vendor Risk Management Software

Vendor risk management software helps organizations evaluate and reduce vendor-related risks by monitoring compliance, protecting data, and preventing service disruptions.
  • All Vendors (24)
Sort by:
Sponsored sort by
Product Info
Company Overview

Founded

Employees

Funding Summary

Not Provided

Clients Your Size Clients Your Size

Clients size is Locked

About Bitsight

Bitsight is a global cyber risk management leader transforming how organizations manage exposure, performance, and risk for themselves and their third parties. Companies rely on Bitsight to prioritize their cybersecurity investments, build greater trust within their ecosystem, and reduce their chances of financial loss. Built on over a decade of market-leading innovation, Bitsight’s integrated solutions deliver value across enterprise security performance, digital supply chains, cyber insurance and data analysis.

Show More
Product Info
Company Overview

Founded

2013

Employees

Funding Summary

Not Provided

Clients Your Size Clients Your Size

Clients size is Locked

About SecurityScorecard

Funded by world-class investors, including Evolution Equity Partners, Silver Lake Partners, Sequoia Capital, GV, Riverwood Capital, and others, SecurityScorecard is the global leader in cybersecurity ratings, response, and resilience, with more than 12 million companies continuously rated.

Founded in 2013 by security and risk experts Dr. Aleksandr Yampolskiy and Sam Kassoumeh, SecurityScorecard's patented rating technology is used by over 25,000 organizations for enterprise risk management, third-party risk management, board reporting, due diligence, cyber insurance underwriting, and regulatory oversight.

SecurityScorecard makes the world a safer place by transforming the way companies understand, improve and communicate...
Show More
Product Info
Company Overview

Founded

2013

Employees

Funding Summary

Not Provided

Clients Your Size Clients Your Size

Clients size is Locked

About RiskRecon

RiskRecon by Mastercard enables you to easily achieve better risk outcomes for your enterprise and your supply chain. RiskRecon’s cybersecurity ratings and assessments make it easy for you to understand and act on your risks, delivering accurate, risk prioritized action plans custom tuned to match your risk priorities.

As a leading provider of cybersecurity ratings, RiskRecon continuously monitors the cybersecurity risk of over 19 million companies across even the most highly regulated industries from finance and insurance to aerospace and healthcare. RiskRecon provides deep, risk-contextualized, data-driven insights into the security risk performance across a customer’s entire ecosystem...
Show More
Product Info
Company Overview

Founded

2012

Employees

Funding Summary

Not Provided

Clients Your Size Clients Your Size

Clients size is Locked

About UpGuard, Inc.

UpGuard is a comprehensive cyber risk solution that combines third-party security ratings, vendor questionnaires, and threat intelligence capabilities to help businesses manage and improve their security posture.

Show More
Product Info
Company Overview

Founded

2001

Employees

Funding Summary

Not Provided

Clients Your Size Clients Your Size

Clients size is Locked

About Venminder

Venminder is an industry recognized leader of third-party risk management solutions. Dedicated to third-party risk, the company is the go-to partner for software, high-quality assessments on vendor controls, certified subject-matter expertise and education.

Venminder’s platform provides a centralized location to execute a third-party risk management program. It enables users to store documentation, onboard a vendor, track contracts, manage SLAs, send and manage questionnaires, manage due diligence and oversight, complete risk assessments, create workflows, run reporting and more.

Assessments performed by Venminder’s qualified experts, including CISSPs, CPAs, financial risk analysts, paralegals and more,...
Show More
Product Info
Company Overview

Founded

2016

Employees

Funding Summary

Not Provided

Clients Your Size Clients Your Size

Clients size is Locked

About Panorays

Panorays is a leading provider of third-party cyber risk management solutions, helping businesses optimize their defenses for each unique third-party relationship. Trusted by the most complex supply chains in the world, Panorays provides businesses the tools to stay ahead of any emerging third-party threats and provides actionable remediations.

Show More
Product Info
Company Overview

Founded

Employees

Funding Summary

Not Provided

Clients Your Size Clients Your Size

Clients size is Locked

About Prevalent by Mitratech

Mitratech Prevalent takes the pain out of third-party risk management (TPRM). Companies use our software and services to eliminate the security and compliance exposures that come from working with vendors, suppliers and other third parties. Our customers benefit from a flexible, hybrid approach to TPRM, where they not only gain solutions tailored to their needs, but also realize a rapid return on investment. Regardless of where they start, we help our customers stop the pain, make informed decisions, and adapt and mature their TPRM programs over time.

Show More
Product Info
Company Overview

Founded

2006

Employees

Funding Summary

Not Provided

Clients Your Size Clients Your Size

Clients size is Locked

About Coupa Software Inc

Coupa Software (NASDAQ:COUP) is the cloud platform for business spend management (BSM). Coupa empowers companies around the world with the visibility and control they need to spend smarter and safer. To learn more about how Coupa can help you spend smarter
Show More
Product Info
Company Overview

Founded

Employees

Funding Summary

Not Provided

Clients Your Size Clients Your Size

Clients size is Locked

About Diligent

Diligent created the modern governance movement. As the leading governance, risk and compliance (GRC) SaaS company, we serve 1 million users from over 25,000 customers around the globe. Our innovative platform gives leaders a connected view of governance, risk, compliance and ESG across their organization. Our world-changing idea is to empower leaders with the technology, insights and connections they need to drive greater impact and accountability – to lead with purpose. Our employees are passionate, smart, and creative people who not only want to help build the software company of the future, but who want to make the world a... Show More
Product Info
Company Overview

Founded

Employees

Funding Summary

Not Provided

Clients Your Size Clients Your Size

Clients size is Locked

About Archer

For more than 20 years, Archer has pioneered holistic integrated risk management solutions that empower enterprise organizations to more effectively manage risk, ensure compliance, and address emerging challenges. Leveraging advanced technology like artificial intelligence (AI) and risk quantification, Archer’s broad range of solutions and services provide our clients with a clear understanding of risk that drives strategic decision-making and operational resilience. Visit www.ArcherIRM.com.

Show More
Product Info
Company Overview

Founded

2008

Employees

Funding Summary

Not Provided

Clients Your Size Clients Your Size

Clients size is Locked

About Allgress

Allgress enables enterprise risk, security, and compliance professionals the ability to efficiently manage their risk posture. By utilizing advanced visualization, automation, streamlined workflows, and the integration of existing data feeds, Allgress reduces the complexity and cost of risk management. Unlike other risk management solutions, Allgress customers derive value in days rather than months.

Show More
Product Info
Company Overview

Founded

2000

Employees

Funding Summary

Not Provided

Clients Your Size Clients Your Size

Clients size is Locked

About Aravo

Aravo delivers the market’s smartest third-party risk and resilience solutions, powered by intelligent automation.

For more than 20 years now, Aravo’s combination of award-winning technology and unrivaled domain expertise has helped the world’s most respected brands accelerate and optimize their third-party management programs, delivering better business outcomes faster and ensuring the agility to adapt as programs evolve.

With solutions built on technology designed for usability, agility, and scale, even the most complex organizations can keep pace with the high velocity of regulatory change. As a centralized system of record for all data related to...
Show More
Product Info
Company Overview

Founded

2014

Employees

Funding Summary

Not Provided

Clients Your Size Clients Your Size

Clients size is Locked

About AuditBoard

AuditBoard transforms how audit, risk, and compliance professionals manage today’s dynamic risk landscape with a modern, connected platform that engages the front lines, surfaces the risks that matter, and drives better strategic decision-making.

Show More
Product Info
Company Overview

Founded

2016

Employees

Funding Summary

Not Provided

Clients Your Size Clients Your Size

Clients size is Locked

About Black Kite

One in four organizations suffered from a cyber attack in the last year, resulting in production, reputation and financial losses. The real problem is adversaries attack companies via third parties, island-hopping their way into target organizations.

At Black Kite, we're redefining vendor risk management with the world’s first
global third-party cyber risk monitoring platform, built from a hacker's perspective.

With 500+ customers across the globe and counting, we're committed to improving the health and safety of the entire planet's cyber ecosystem with the industry’s most accurate and comprehensive cyber intelligence. While other...
Show More
Product Info
Company Overview

Founded

2015

Employees

Funding Summary

Not Provided

Clients Your Size Clients Your Size

Clients size is Locked

About LogicGate Risk Cloud

LogicGate delivers holistic GRC expertise, simplifying complexities through automated workflows, real-time insights, and intuitive AI features. With over 40 purpose-built solutions, Risk Cloud—our flexible no-code platform—offers rapid deployment and custom-built workflows for large-scale operations. This empowers GRC leaders to collaborate and report on accurate, contextual data tailored to their needs.

Our platform integrates seamlessly with leading technologies, streamlining information collection and analysis. This enables precise risk reporting and measurement. From cyber risk and compliance to third-party risk management, LogicGate helps organizations minimize risk and make strategic decisions.

We understand the importance of simplicity, time,...
Show More
Product Info
Company Overview

Founded

2009

Employees

Funding Summary

Not Provided

Clients Your Size Clients Your Size

Clients size is Locked

About myCOI

myCOI helps our customers handle the everyday tasks of managing certificates of insurance, protecting against underinsured claims, costly litigation and failed audits. Our clients are hard-working individuals and businesses who are exposed to risk due to their industry’s ever-changing rules and regulations. Whether you’re an owner or risk manager worrying about your business’s compliance, or an office manager dreading the stack of COIs waiting to be reviewed and entered into your system, myCOI has the technology and the expertise to make your job easier. We offer both software and services solutions to manage your overall insurance risk and tracking needs. Show More
Product Info
Company Overview

Founded

2003

Employees

Funding Summary

Not Provided

Clients Your Size Clients Your Size

Clients size is Locked

About ProcessUnity

ProcessUnity’s cloud-based solutions help organizations of all sizes automate their risk and compliance programs. Our highly configurable, easy-to-use tools significantly reduce manual administrative tasks, allowing customers to spend more time on strategic risk mitigation. As a Software-as-a-Service technology, ProcessUnity deploys quickly with minimal effort from customers and their IT resources. Our technology delivers faster, better results, and the ability to scale governance, risk, and compliance programs over time. ProcessUnity’s suite of applications includes Third-Party Risk Management, Cybersecurity Program Management, Policy and Procedure Management, Enterprise Risk Management, Regulatory Compliance Management, Product and Service Offer Management, and more. Learn more at www.processunity.com. Show More
Product Info
Company Overview

Founded

2005

Employees

Funding Summary

Not Provided

Clients Your Size Clients Your Size

Clients size is Locked

About Quantivate

Since 2005, Quantivate has been helping organizations efficiently manage their governance, risk, and compliance (GRC) initiatives. Quantivate’s scalable technology and service solutions equip organizations of all sizes to make more strategic decisions, improve performance, and reduce costs. Quantivate was acquired by Ncontracts in 2023.
Show More
Product Info
Company Overview

Founded

2022

Employees

Funding Summary

Not Provided

Clients Your Size Clients Your Size

Clients size is Locked

About Scrut Automation

Governance, Risk, and Compliance simplified for new-age businesses.

Show More
Product Info
Company Overview

Founded

2020

Employees

Funding Summary

Not Provided

Clients Your Size Clients Your Size

Clients size is Locked

About Secureframe

Secureframe is the automated compliance platform built by compliance experts. We're transforming how businesses and Service Providers manage security and compliance programs.

Show More

Select up to 3 Vendors to Compare

Frequently Asked Questions

What is a Vendor Risk Management Program?

Today, many businesses depend on outside vendors for key services, which allows them to gain valuable expertise - but also exposes them to new risks. A vendor risk management program identifies, evaluates, and monitors the risks associated with working with third-party vendors. It includes processes for assessing vendors before working with them, monitoring their performance and compliance, and having plans in place for potential issues that might come up.

Who is Responsible for Vendor Risk Management?

Typically, vendor risk management falls under the responsibility of the procurement, legal, or compliance teams. In smaller companies, it may be managed by a single department or even the business owner.

What are the Types of Vendor Risks?

Vendor risks can include financial risks (e.g., a vendor going bankrupt), compliance risks (failing to meet regulations), cybersecurity risks (data breaches), operational risks (delays or quality issues), and reputational risks (e.g., vendor misconduct impacting your brand). Finally, there's also a strategic risk, which involves vendors not aligning with your long-term business goals.

×