Supply Chain Risk Management Solutions

We help government and private industry manage their external dependency risks. We primarily focus on organizational relationships involving information and communications technology (ICT), also known as supply chain or third party risks.

The following solutions are ways that we can help you manage your third-party risks:

External Dependency Management (EDM) Assessment

An EDM assessment, based on the DHS Cyber Resilience Review (CRR) and the CERT Resilience Management Model (CERT-RMM), identifies an organization's external dependencies and the risks associated with them. This type of assessment examines an organization's practices and maturity to manage its external dependency risks. An assessor evaluates how the organization is doing and where it can improve. Assessment results also enable organizations to compare themselves to their peers. If you are interested in learning more about or scheduling an assessment, contact us.

External Dependency Management (EDM) Evaluations and Coaching

The EDM Method is a tool that helps your organization understand, evaluate, and improve its ability to manage external dependency risks. If you are interested in learning more about the method and how we can help you, contact us.

Software Assurance

Educating yourself about software assurance is critical for organizations that develop software products or products with software components. The business case for software assurance describes the importance of software assurance. Many publications, presentations, and podcasts are available to help you learn more about what software assurance is and how to implement it effectively in your organization.