Emerging threats
Client case study summary
A major UK financial services organisation needed to scale its third-party supplier due diligence programme to keep pace with a growing supplier portfolio.
With a large number of suppliers requiring review and limited specialist capacity in-house, the organisation sought a specialist partner who could deliver rigorous assessments at pace — working within their existing tools, processes and compliance framework.
This case study outlines how PGI embedded within the client's environment to more than double their monthly assessment completion rate — and what we found along the way about the systemic risks hiding across their supplier base.
For the methodology, findings, and practical recommendations for maturing your own third-party risk programme:
Related Insights
We have Cyber Essentials. We’re secure…right?
Cyber Essentials (CE) is often described as the UK Government’s baseline for cyber security. Achieving certification shows that an organisation has implemented a set of fundamental technical controls designed to protect against the most common types of Commodity cyber-attacks.
MEDIA RELEASE: PGI is a founding signatory of the CREST AI Charter
Protection Group International has become a founding signatory of the CREST AI Charter – a global initiative establishing professional standards for responsible AI use across the cybersecurity industry.
What’s the difference between DCC Level 0 and 1?
The Defence Cyber Certification (DCC) scheme runs from Level 0 up to Level 3, but the most significant step is the one between 0 and 1.