SureCloud, the provider of cloud-based, Governance, Risk and Compliance (GRC) solutions, has been recognised by Gartner as a Challenger in the 2020 Gartner Magic Quadrant for IT Vendor Risk Management (VRM) Tools, for completeness of vision and ability to execute. SureCloud’s position on the ability to execute axis improved since the previous year’s Magic Quadrant for IT VRM Tools, where it was recognised for the first time as a Niche Player. The 2020 Gartner Magic Quadrant report evaluates IT Vendor Risk Management solution providers, recognised by Gartner as offering comprehensive solutions, and categorises them into four categories: Niche Players, Visionaries, Challengers, and Leaders. Risk management processes The Quadrant provides a view on how well IT VRM providers are executing their stated visions and performing against Gartner's market view based on customer feedback and solution demonstrations. According to Gartner, “The IT Vendor Risk Management use case focuses on the process of ensuring that the use of third-party service providers and IT suppliers does not create an unacceptable potential for business disruption or a negative impact on business performance.” Vendor Risk Management solutions enable organisations to accurately ascertain the security and compliance risks associated with their IT third-parties, creating a centralised register of these parties, and integrating this with wider risk management processes. Vendor risk management I am proud to see that SureCloud’s vendor risk management product is a comprehensive solution" Richard Hibbert, CEO and Co-Founder of SureCloud, said: “We are delighted that SureCloud has been recognised as a Challenger. From our view, this underlines our strategy to continuously innovate and develop our GRC solutions. In particular, I am proud to see that SureCloud’s vendor risk management product is a comprehensive solution that offers a central view of an organisation’s vendor assurance program." SureCloud has also been recognised this year as a Challenger in Gartner’s August 2020 Magic Quadrant for IT Risk Management, which they believe validates the platform’s ability to deliver a complete GRC program by encompassing IT Risk, Compliance and Vendor Risk processes. Highly sensitive data Vendor risk management is a crucial part of any organisation’s cybersecurity and risk program, with the number of third parties having access to highly sensitive data and therefore offering a simple route new risks and threats to be introduced to the organisation. Demonstrating that each third party’s approach to security and risk management meets your internal standards and regulatory obligations is vital to ensure you are managing vendor risk effectively. SureCloud’s Vendor Risk Management solution is designed to offer a simple out of the box framework for organisations to assess and review all their IT third party vendors for potential risks - in one scalable, flexible and highly configurable software-as-a-service (SaaS) solution. SureCloud’s Third-Party Risk Management software solution provides: A centralised register of all third-party IT vendors, giving a comprehensive view of risk. End user-configurable and dynamically generated risk-assessment for each third party, ensuring that the questions they are asked are ones that apply to them. Full integration with regulatory compliance data and wider IT risk management Automated third-party notifications and simple to use reporting.
SureCloud, a provider of cloud-based, Gartner recognised Integrated Risk Management solutions and cyber security services, has announced the launch of its free Supply Chain Tool. The new complimentary solution enables businesses to gain a holistic view of their critical suppliers and understand areas of risk in the supply chain, whilst allowing a user to provide insights into the supply chain research. The new application allows businesses to document their key assets and processes, assess their critical suppliers against a pre-defined question set. Then aggregate and report findings through flexible dashboards, helping organisation to assess the impact on their supply chain. Rapid deployment of solution Effective supply chain management is particularly important at this time of global crisis. The effects of the coronavirus pandemic have transformed the way suppliers are managed and relied upon and created uncertainty for third-party risk programmes. SureCloud’s new tool aims to support organisations in assessing their supply chain risks during the COVID-19 outbreak and beyond. The complimentary Supply Chain Solution has a simple user interface with prebuilt content that enables rapid deployment of the solution. The tool offers a supply chain assessment, reports, and dashboards designed by industry experts within SureCloud’s Risk Advisory Practice. These components give businesses a time advantage as assessments can be sent directly to crucial suppliers from the SureCloud platform. Risk Advisory Practice Most organisations understand the importance of third-party risk management by now" This, in turn, helps measure potential supplier risks and determine impacts on one's supply chain. The application also offers built-in support including a library of training videos, a support desk, and advice from industry experts using SureCloud’s Risk Advisory Practice, ensuring smooth user adoption and realisation of value. Richard Hibbert, CEO and Co-Founder at SureCloud, said, “Most organisations understand the importance of third-party risk management by now, but fourth party risk and beyond remains too often shrouded in mystery. But if your third party is working with third parties, and most are, from individual consultants up to major technology providers, then those individuals or organisations are also part of your risk posture." Supply chain audit solutions "This is why it is so important to think of your organisation’s security and risk posture as part of a chain, in which you are only ever as robust as the weakest link.” He continued, “Supply chain audits need to take in a broad spectrum of information. It’s not just about the obvious, what cyber security tools do they have in place, who is responsible for which process, what the contingency plans are, but also ‘softer’ information like where their offices are based and who their customers are. Supply chain audit solutions need to be able to collect all this data as efficiently as possible, which means that cloud-based solutions are often most appropriate." Supply Chain Assessment Tool The result is a snapshot view of the health, or risk, of the supply chain at any time" "Third and fourth parties and beyond can respond to digital questionnaires with the information collated and aggregated automatically. The result is a snapshot view of the health, or risk, of the supply chain at any time.” “SureCloud is dedicated to making risk management and cyber security as streamlined and straightforward as possible, so we are delighted to announce the launch of our Supply Chain Assessment Tool. We know it will help organisations gain a better understanding of their complete supply chain, particularly in light of current circumstances disrupting normal operations.” Assess supply chain risks By using the SureCloud Platform to assess supply chain risks, clients provide valuable global insights into the current state of the supply chain, which supports other organisations with their resilience strategy. SureCloud can utilise the results to measure and report on global trends relating to the impact and readiness of supply chains, before sharing this analysis for learning. Actions that a user can take with SureCloud’s Free Supply Chain Assessment Tool: Document key processes and assets Document the user's business vendors Directly assess the user's supply chain Define and manage issues and exceptions Report results via intuitive dashboards
SureCloud, the provider of cloud-based, Integrated Risk Management solutions and Cyber security and Risk Advisory services, has appointed Paul Zeila as Vice-President of GRC Sales for EMEA. He will be instrumental in driving business growth and developing service lines, as well as having overall responsibility for SureCloud’s suite of GRC products. Paul brings nearly 20 years of experience working in the GRC space with global organisations such as IBM, ACL, SAP and most recently, Deloitte. Paul has an in-depth understanding of Enterprise Risk, Governance Risk and Compliance, and has an excellent track record of sales and creating go-to-market strategies for clients. Cloud-based solution As part of his remit at SureCloud, Paul will be responsible for managing his team based primarily out of the London office, with plans to create new regional offices and grow the sales teams across the UK in the near future. Commenting on his appointment, Zeila said: “SureCloud’s cloud-based solution is intuitive and easy to use, and it represents how people interact with software these days. A lot of the legacy tools don’t have the capabilities of SureCloud’s solutions, which really sets us apart from the competition. I see a huge opportunity and potential to help bring SureCloud’s fantastic products to market, and I can’t wait to get started.” Richard Hibbert, SureCloud CEO, added: “Paul shows great enthusiasm for our sector and really understands the market. We have no doubt he’ll be instrumental in helping us continually drive our business forward in line with our ambitious goals.”
SureCloud, the provider of cloud-based, Integrated Risk Management solutions, has been placed on Gartner’s Magic Quadrant for IT Vendor Risk Management Tools for the first time after being recognised on Gartner’s Magic Quadrant for Integrated Risk Management Solutions back in July 2019. The quadrant names 16 key solution vendors identified by Gartner as offering vendor risk management (VRM) solutions. VRM solutions enable organisations to accurately ascertain the security and compliance risks associated with their IT third-parties, creating a centralised register of these parties and integrating this with wider risk management processes. Highly configurable software-as-a-service We think it underlines our ability to offer a truly comprehensive third-party risk management solution" Richard Hibbert, CEO and Co-Founder at SureCloud, said: “We are delighted that SureCloud has been included in the Magic Quadrant for IT Vendor Risk Management Tools; we think it underlines our ability to offer a truly comprehensive third-party risk management solution.” “Our flexible, scalable and highly configurable software-as-a-service (SaaS) delivery model, combined with managed service options, is proving particularly attractive to organisations looking to build a robust, central view of their vendor assurance program.” Security and risk management Third-party risk management is a vital part of any organisation’s cybersecurity posture, with many third parties having access to highly sensitive data and offering criminals a potential route into their organisations. Demonstrating a clear awareness of each third party’s approach to security and risk management is also an increasingly significant element of privacy regulations such as the GDPR. In response, SureCloud’s Vendor Risk Management solution is designed to offer a smooth and scalable means for organisations to assess and review all their IT third party vendors for potential risks. IT risk management processes The SureCloud Vendor Risk Management solution offers: A centralised register of all third-party IT vendors, giving a holistic view of risk A dynamically generated risk-assessment for each third party, ensuring they are only asked questions which apply to them Automated third party notifications and response reporting. Full integration with wider IT risk management processes and data privacy programs.
SureCloud, the provider of cloud-based, integrated risk management solutions and cyber security services, has announced the launch of its new Risk Advisory practice. SureCloud Risk Advisory SureCloud Risk Advisory will deliver a range of integrated cyber, risk and advisory services, uniquely underpinned by its cloud-based platform. This means organisations will have a central point of access to a range of risk assessment, base lining, information assurance and governance services and associated management information, all delivered as-a-service in the cloud. This launch demonstrates SureCloud’s evolution to provide clear, holistic visibility of the entire risk and security posture. It is also as a response to organisations’ growing demands for real-time practical, flexible and pragmatic support through professional services automation. SureCloud’s Risk Advisory services will help align organisational needs with industry best practice Cyber security and risk expertise SureCloud’s Risk Advisory services will help align organisational needs with industry best practice, as well as helping to advise on how to prioritise the areas which are most crucial in achieving their business objectives. The new team offers a flexible approach to the consumption of cyber security and risk expertise, with SureCloud working as either an extension of the organisation’s security team or as an independent security expert. The new practice will be headed up by Ben Jepson with Craig Moores having responsibility for the delivery function and service development. Both recently joined SureCloud from global cyber security and risk mitigation specialist NCC Group, bringing many years of cyber and risk experience combined with a high level of commercial acumen. Enhancing enterprise security Richard Hibbert, SureCloud CEO, said “SureCloud Risk Advisory is our proactive response to the evolving enterprise risk landscape and customer demand for professional services delivered through supporting technology”. He adds, “With cyber security threats growing more sophisticated every day, and organisations increasingly – and rightly – demanding real-time, highly flexible and holistic support in assessing and responding to those threats, the time was right to leverage our existing platform and offer advisory services in a way that is easily digestible in the same way we do for our security testing clients today. The appointment of Ben and Craig to lead the new division brings impeccable leadership and consultancy experience into the mix. We’re all very excited to take SureCloud Risk Advisory forward.”
SureCloud, globally renowned provider of cloud-based, integrated risk management solutions and cyber security services, has further enhanced its senior management team with the twin appointments of Ben Jepson as Vice-President and Craig Moores as Practice Director, of SureCloud’s new Risk Advisory division. Jepson will have overall responsibility and Moores will be accountable for the delivery capability within the new practice. Both join from global cyber security specialist NCC Group and will bring their experience in international business development, cyber security and risk consultancy to establish and grow SureCloud’s new Risk Advisory practice. Uniquely, the practice will deliver its services through the award-winning SureCloud platform, enabling deeper relationships with clients as opposed to one-off project engagements. Risk-based cyber security services Risk-based cyber security services covers assessments, remediation services, and advisory-as-a service solutions Risk-based cyber security services covering assessments, remediation services, board-level advisory and advisory-as-a service solutions will form the core offerings, designed to help organisations manage their cyber security and risk to ensure it aligns with their business objectives. Previously Director of the Risk Management and Governance (RMG) division at global cyber security specialist NCC Group, Jepson brings 20 years of senior experience in corporate risk mitigation and cyber security, and an impressive track record in leading international teams and building world-leading, highly profitable professional services functions. Cyber security and information risk management expert Moores will ultimately be responsible for the delivery function and service portfolio within the new practice. He was part of the senior delivery team at NCC Group, responsible for leading and delivering complex cyber security solutions aligned to strategic business objectives, and brings broad cyber security experience including strong technical software development and project management. Moores has particular strengths in information risk management, PCI DSS, strategic planning and business auditing, and is also certified CISSP, Lead Auditor and PCI DSS QSA. Security and risk management Commenting on his appointment, Jepson said, “SureCloud is entering an exciting period of its development, which is precisely why I wanted to join. By bringing cyber and risk together in a holistic Risk Advisory practice, all uniquely underpinned by the SureCloud platform, we’re offering a genuinely comprehensive approach to risk management.” Moores added “Risk management is embedded in SureCloud’s culture, and it’s fantastic that I’ll be leading the delivery team in the Risk Advisory arm of the business to help build on its current strong position. I’m looking forward to advising organisations on how they can make informed, educated decisions to help mitigate risk so that they can unleash their full potential.” Cloud-based security platform The new Risk Advisory function within SureCloud really sets us apart in the market" Richard Hibbert, SureCloud CEO, said “The new Risk Advisory function within SureCloud really sets us apart in the market and is a direct response to customer demand for professional service automation. Our cloud-based platform has built a fantastic reputation for being agile, intuitive and dynamic, and by delivering Risk Advisory services in the same way, we offer organisations everything needed to assess and baseline their environments against industry best practice.” He adds, “Both Ben and Craig bring outstanding skills and experience to the table, with strong business acumen. They are experts in their field, and we are extremely confident that they’ll help us build on the success we’ve already achieved, and that they will be invaluable members of our team.” GRC software and risk advisory SureCloud is a provider of Gartner recognised GRC software and cyber & risk advisory services. Whether buying products or services, organisations benefit from automated workflows and insight from the award-winning SureCloud platform. All of SureCloud’s service offerings are fully compatible with the GRC suite of products, enabling a seamless integration of information.
SureCloud, a provider of cybersecurity services and cloud-based, Integrated Risk Management solutions, appoints Jon Taylor-Goy as EMEA Sales Manager for the cybersecurity division. Jon will be instrumental in helping drive business growth, as well as establishing complimentary new service lines. Jon’s expertise spans business growth, product development, and go-to-market strategies in the areas of IT risk management and governance. Cybersecurity service offering Jon brings more than 18 years of in-depth experience in IT sales, specialising in cybersecurity, risk, and compliance. Jon worked at NCC Group for 18 years, working his way up to Head of Business Development Prior to joining SureCloud, Jon worked at NCC Group for 18 years, working his way up to Head of Business Development, Risk Management, and Governance, where he formed a key role in the business development function that saw the company grow from 100 staff in one location to more than 2,000 worldwide. “SureCloud has a compelling proposition. Its cybersecurity service offering, Pentest-as-a-Service©, and approach to ongoing customer support sets the company apart from other providers and gives enormous potential for growth,” said Jon. Ever-evolving customer needs “I look forward to forging new customer relationships, developing strong relationships with current clients, and working with colleagues to bring new services to market that will meet ever-evolving customer needs.” Richard Hibbert, SureCloud CEO, said: “Enterprises across Europe are operating in a very challenging environment when it comes to IT security. Their networks are becoming more complex, the attacks they face are growing in number and sophistication, and their compliance obligations regarding data security are increasing. Jon’s work will bring our cybersecurity services, including SureCloud’s Pentest-as-a-Service, to a growing number of enterprises, ensuring that our offering continues to evolve and address the challenges they face.”
SureCloud, global provider of cloud-based, integrated risk management solutions, has been positioned as a Niche Player in Gartner’s Magic Quadrant for Integrated Risk Management Solutions for the first time. Integrated Risk Management Richard Hibbert, CEO and Co-Founder at SureCloud stated, “Being recognised in the 2019 Gartner Magic Quadrant for Integrated Risk Management Solutions for the first time is a proud moment for SureCloud.” Richard added, “We feel that SureCloud’s inclusion is testament to our commitment to providing our customers with the risk management solutions to fit their specific business needs without compromising agility.” Program management and assessment tracking SureCloud’s IRM solutions are designed to help organisations manage IT risk across different business functions While organisations are facing increasing risk to their IT and non-IT operations, traditional spreadsheet-based approaches to risk management can make program management, assessment tracking, and compliance reporting challenging and onerous. In response, SureCloud’s IRM solutions are designed to help organisations manage IT risk across different business functions and demonstrate compliance with a wide range of major frameworks and standards - in one integrated Software as a Service (SaaS) platform. The SureCloud Software as a Service (SaaS) platform offers: Automation of traditionally spreadsheet-driven, manual processes A single source to centralise individual and project team task management, workflows, dashboards, and reporting An intuitive user experience, powerful data aggregation, and pre-built intelligent forms help you simplify and cut through compliance complexity