TechValidate Research on Prevalent

These pages present data that TechValidate has sourced via direct research with verified customers and users of Prevalent. TechValidate stands behind the authenticity of all published data. Learn more »



23 Published TechFacts

6 Published Charts

21 Published Case Studies



Featured Research Collections for Prevalent

Curated collections and slideshows of TechValidate research data on Prevalent.



Selected Research Highlights


Prevalent Customer Research

Which regulations or industry frameworks must you regularly report against?

GDPR
77%
ISO 27001
70%
PCI
33%
HIPAA
27%
NIST 800-53
20%

Prevalent Case Study

Medium Enterprise Professional Services Company

Introduction

This case study of a medium enterprise professional services company is based on an October 2019 survey of Prevalent customers by TechValidate, a 3rd-party research service. The profiled company asked to have their name blinded to protect their confidentiality.

“We’ve built Prevalent into our internal processes as it pertains to vendor on-boarding. If the new vendor meets certain criteria, then they will undergo Prevalent assessment.”

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Prevalent:

  • Top drivers for purchasing their Prevalent third-party risk management solution:
    • Stronger cybersecurity, to ensure that third parties do not introduce cyber risks that could negatively impact the business
    • Reduce operational burden (the process of assessing and evaluating vendors took too much time and resources)
    • Greater risk-based intelligence
  • Challenges that deploying Prevalent or 3GRC solved for their organization:
    • A lack of automation in collecting and analyzing vendor surveys
    • A limited ability to continuously monitor vendors
    • A lack of insights to make risk-based decisions
    • An inability to share completed assessment content and supporting evidence to more quickly identify risks and vulnerabilities
    • An inconsistent methodology for vendor risk management

Use Case

  • Regulations or industry frameworks they must regularly report against:
    • GDPR
    • HIPAA
    • ISO 27001
  • Looking to grow the number of vendors they assess in the next 12 months by 0-10%.

Results

The surveyed company achieved the following results with Prevalent:

  • Saved more than 1 week per assessment on average by utilizing the Prevalent Platform.

Prevalent Case Study

S&P 500 Financial Services Company

Introduction

This case study of an S&P 500 financial services company is based on an October 2019 survey of Prevalent customers by TechValidate, a 3rd-party research service. The profiled company asked to have their name blinded to protect their confidentiality.

“We have risk reporting on time when we need to report to the authorities. Consistent reporting metrics is another key benefit.”

Challenges

The business challenges that led the profiled company to evaluate and ultimately select Prevalent:

  • Top drivers for purchasing their Prevalent third-party risk management solution:
    • Compliance – reporting against specific regulatory or industry framework requirements
    • Stronger cybersecurity, to ensure that third parties do not introduce cyber risks that could negatively impact the business
    • Greater risk-based intelligence
  • Challenges that deploying Prevalent solved for their organization:
    • A limited ability to continuously monitor vendors
    • A lack of guidance in addressing industry standards or third-party regulatory compliance requirements for cyber risk, InfoSec, or data privacy
    • An inconsistent methodology for vendor risk management

Use Case

The key features and functionalities of Prevalent that the surveyed company uses:

  • Regulations or industry frameworks they must regularly report against:
    • GDPR
    • HIPAA
    • ISO 27001
    • PCI

Results

The surveyed company achieved the following results with Prevalent:

  • The following Prevalent capabilities in terms of how differentiated they are compared to the competition:
    • Breadth of available surveys: very differentiated
    • Assessment scheduling and automated chasing reminders: very differentiated
    • Automated risk and compliance register: very differentiated
    • Centralized document/evidence management: very differentiated
    • Create tasks, flags, and risks based on results of assessment responses in risk register: very differentiated
    • Identify key controls and apply reporting to the most critical relevant risks: very differentiated
    • In-solution communication with suppliers on remediating risks: very differentiated
    • Scan third-party networks and apply business intelligence to provide and “outside-in” weighted score of risks: very differentiated
    • Map results to regulatory and industry frameworks like ISO, NIST, GDPR, CoBiT 5, SSAE 18, SIG, SIG Lite, NYDFS for reporting purposes: very differentiated
    • Identify and visualize relationships between entities to demonstrate dependencies and flows of information: very differentiated
    • User dashboard of tasks, schedules, risk activities, survey completion status, agreements, and documents: very differentiated
  • How long it took to complete an assessment:
    • Before deploying Prevalent: more than a month
    • After deploying Prevalent: 2-3 weeks
  • Saved about 1 week per assessment on average by utilizing the Prevalent Platform.

Prevalent Customer Research

Which vendors did you evaluate before choosing Prevalent?

BitSight
27%
OneTrust
27%
SecurityScorecard
23%
ServiceNow
23%
RiskRecon
18%
CyberGRX
14%
Dell RSA Archer
14%
ProcessUnity
5%
ThirdPartyTrust
5%

Prevalent Customer Statistic

Prevalent Brings Visibility to Help Prioritize Risks

79% of surveyed organizations found Prevalent’s capabilities for creating tasks, flags, and risks based on results of assessment responses in the risk register to be differentiated compared to the competition.

79%

Prevalent Customer Testimonial

Prevalent Delivers a Sound Methodology

Prevalent has helped us have an evidence-based methodology of third party compliance.

Project Manager, Small Business Professional Services Company



More to Explore



About Prevalent

Prevalent is helping global organizations manage and monitor the security threats and risks associated with third and fourth-party vendors.

  Prevalent Website